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ABSTRACT 



This invention is a system and method for automated access 
to personal information associated with an end user, wherein 
the personal information is stored on a personal information 
provider. A representation of the personal information and a 
link corresponding to the personal information stored on the 
personal information are presented to the' end use via a client 
computer. Upon activation of the link, the client computer is 
automatically driven to the personal information provider 
presenting to the user via the client computer a page on the 
personal information provider. 
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SYSTEM AND METHOD FOR AUTOMATED come back to a site when this information is organized 

ACCESS TO PERSONAL INFORMATION according to personal preferences. 

FIG. 1 displays the current process of acquiring online PI 

CROSS-REFERENCE TO RELATED PATENT 100. The end user first selects an information provider site 

APPLICATION 5 in step 110. The end user proceeds to step 120 by locating 

and entering the Internet address of the selected information 

This application claims the benefit, pursuant to 35 U.S.C. provider. This step may be accomplished in several manners 

§119(e), of applicants' provisional U.S. Patent Application with varying levels of complexity. A simple means for 

Serial No. 60/105,917, filed Oct. 28, 1998, entitled "Appa- accomplishing this step is the utilization of a bookmark or 

ratus and Method for Automated Aggregation and Delivery 1Q favorite whereas locating an information provider for the 

of and Transactions Involving Electronic Personal Informa- first time might involve significant time and effort perform- 

tion or Data" and of applicants' provisional U.S. Patent ing online searches. In step 130, the end users logs into the 

Application Serial No. 60/134,395, filed May 17, 1999, selected information provider's Web site utilizing the site's 

entitled "Apparatus and Method for Automated Aggregation specific logon protocol. This protocol usually involves veri- 

and Delivery of and Transactions Involving Electronic Per- fying the identity of the end user using a user name and 

sonal Information or Data". password or other means of verification, acquiring the 

verification data from cookies residing on the end user's 

BACKGROUND OF INVENTION system or a combination of requested data and cookie data. 

1 Field of Invention ^ end user conlinues m ste P 140 bv navigating through 

' . t , . , ™ Web pages on the information provider's Web site until the 

. inventlon r elale V° 3 s y stem and metnod / or deter ~ desired information is located. During this process, the end 

mining revenue derived from interactions involving per- usef {& Q&&Q ^ tQ visit Web of m{c 0f nQ use 

sonal mformation. TTie invention more particularly relates to tQ tfae end uger whose b ^ {Q sim { acquife me 

the determination of revenue derived from an intermediary ticular PI residi on the Wc5 site . ultimately in step 150, 

based on interactions involving personal information asso- ^ end USCf ^ nted with tne desired PL ^ cntire 

ciated with end users aggregated from one or more personal prQCCSS 1Q0 is rcpeated for each individual piece of PI 

information providers. desired by lhe end usef Under this pi access modelj the end 

2. Description of Related Art user mus t visit each separate information provider, track 

Looking back over the last five years, it is apparent that potentially different identity verification data for each, uti- 

as the Internet gained momentum, consumers demanded 30 lize a different user interface at each site and possibly wade 

applications or services that make their online experience through a significant number of filler Web pages, 
simpler, easier to use, and more satisfying. The development FIG. 4 pictorial illustrates the architecture of this current 

of successful Internet Sites has corresponded with a number access process. The end user 210 utilizes the client computer 

of themes which have developed over the last few years. 220 to access each PI Web site 250 across the Internet 230. 

When carefully analyzed this evolution is a logical devel- 35 This current model suffers from several significant deficien- 

opment of the emerging digital economy. cies. The end user must login to each site separately. Each 

Prior to 1994, the Internet was not a mass media, in part, separate site has its own graphical user interface. Each site 

because the existing technologies (FTP, Archie, Usenet, and wants the end user to stay and return; each visited site wants 

Gopher) were not user friendly and required the end user to to retain end user focus for as long as possible. No true 

do all of the work (e.g., the end user had to learn of an 40 aggregation of PI exists; multiple accesses simply allow 

existing data source, find the address, navigate to the sequential access to particular pieces of PI. 
destination, and download the information). As more con- One partial solution to these problems has recently 

sumers began accessing the Internet, Search Engines were evolved in the form of portal sites. Generic portal sites 

created to solve this usability issue. With the advent of the aggregate resources into categories and provide links to sites 

commercial Search Engine, additional content could be 45 covering topics within those categories. Yahoo and Excite 

easily added to the Internet and the end user had a means of are examples of generic portal sites. These sites facilitate 

finding and accessing this information. Consumers required horizontal aggregation of generic content; horizontal aggre- 

better tools than Search Engines for organizing and access- gation refers to aggregation of PI access within a particular 

ing this wealth of generic content. Push technologies were information provider category such as banks or utility com- 

explored, and eventually, the portal strategy was success- 50 panies. Some portal site allows individual end users a 

fully adopted as an efficient way for consumers to easily limited capability to select and configure disparate generic 

access a variety of content sources in a single, easy to use PI. Generic PI refers to PI of interest to the particular end 

format. As the volume of available online content continues user that does not require specific identity verification to 

to grow exponentially, portals are now confronted with the obtain. For example, an end user might be interested in the 

need to make different types of content available to different 55 weather forecast for his local area. This information could be 

consumers based upon their particular preferences and integrated into a portal page without requiring identity 

tastes. verification of the particular end user receiving this PI. The 

The phenomenal success of Internet portals and destina- individualized portal page provides a significant benefit to 

tion sites has demonstrated the importance of creatively and users seeking to aggregate generic PI, However, current 

intelligently aggregating, organizing and presenting the 60 portal pages do not generally provide PI requiring identity 

mass of information available on the Web. Search engines, verification such as an end user's stock portfolio or bank 

portals and destination sites have Internet strategies based on balance. Further, these pages do not facilitate transactions 

the frequency, duration and quality of end user visits to their utilizing PI. 

sites. For this reason, destination sites and portals are Under current technology, aggregating PI available over 

constantly seeking content and/or technologies which drive 65 the Internet requires a significant burden in terms of time, 

quality traffic to their site and keep it there. Recent trends effort and learning curve. An end user wishing to access his 

indicate that Internet users are up to 25 times more likely to PI needs to individually visit a variety of information 
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provider sites each with its own requirements, graphical user FIG. 8 depicts the integration model for the dynamic 

interface and login protocol. generation of HTML pages. 

SUMMARY OF THE INVENTION FIG ' 9 dis P lavs lne run-time process for dynamic genera- 
tion of HTML page. 

Hie present invention is a system and method for auto- 5 FIG. 10 illustrates a process for automated applet inter- 
mated access to personal information associated with an end aclio[J utilizjn a modified Java virtual machine 
user, wherein the personal information is stored on a per- ^ . g ^ fl owcnaf t exem ijf m an intermedia Web 
sonal information provider. A representation of the personal . P / S T 
information and a link corresponding to the personal infor- Slle lransaaion structure, 
mation stored on the personal information are presented to 10 DETAILED DESCRIPTION OF THE 
the end user via a client computer. Upon activation of the INVENTION 
link, the client computer is automatically driven to the 

personal information provider presenting to the user via the A P rcferred embodiment of the invention is now described 

client computer a page on the personal information provider. ,n detaiL Refe ™ng to the drawings, like numbers indicate 

t ... , 1 • . . . • 1 j j * *i_ -1 c like parts throughout the views. As used in the description 

In one embodiment, an application is downloaded to the 1 5 / & , .» 

,. t rj, , 1 1 j r • herein and throughout the claims that follow, the meaning of 

client. The downloaded application initiates a connection « „ « » j «. L » • 1 j 1 1 r 1 1 

. «. 4 f j *i_ i r a > an > and the includes plural reference unless the 

between the client computer and the personal information ' . . , ,. " A1 , . 

•j r,, ,. r • . .u u *u context clearly dictates otherwise. Also, as used m the 

provider. Ine application navigates through pages on the . .. . . , . . L , . . r n 

, . r .j ... . . : tI f , description herein and throughout the claims that follow, the 

personal information provider until arriving at the personal F c ti . „. „ ,„ „ V l 

information. Finally, the application presents the personal 20 yeaning of in includes in and on unless the context 

information to the user on the client computer. The appli- dearly dlCtatCS olherwise ' 

cation may be either generated with any necessary data In 00 tune > end ^ Wl11 have to lo S into a lar S e number 

associated with the end user and associated with the personal of dlfferent Web Slte s> each with separate passwords, 

information or such data may be transmitted to the applica- securit y» mles > software and "look and feel"— just to get the 

tion. The data associated with the personal information 25 information currently obtained by checking one place-the 

provider may include a navigation script for guiding the mailbox at the end of the driveway. The Internet will 

application to the personal information. The data associated fundamentally change the way in which end users will 

with the end user may include any data necessary to effec- access Personal Information (PI) and will make e-commerce 

tuate the navigation via the navigation script. as familiar as using an ATM. "Personal Information" is all 

In a further embodiment, a message including any nec- 30 *e data that companies, information providers, have that 

essary user data and personal information provider data is * S P ecific °' ^ ue t0 each t P ers ° n s f uch a f. monthly bills, 

•** j * *u 1* * * • *u i- . bank account balances, investments information, health care 

transmitted to the client computer causing the client com- . c .. ' - 

outer to automatically log the end user into the personal b ™f< : 1 omu1 ' v ™ e an ? fax ™ essa ^ s ' holdings or 

information provider/thereby leaving the end user at a post ° ,her informatl0n 10 a P ar,lcular 

login page. In a preferred embodiment, the message com- 35 

prises a page containing a form, which includes login 11115 P resent invention alleviates several of the problems 

information that upon opening by software on the client witn tne current PI acquisition methods by automatically 

computer redirects the client computer to a post login page. aggregating PI, not only generic PI as aggregated by portals 

In yet a further embodiment, the client computer is driven bu ' ab ° PI f s P ecific ,0 , thc end K us f. r re * , « n *. idcr » lil >' 

to the personal information by connecting to the personal 40 verification for access. In one embodiment, the mvention 

information provider, navigating to the personal information ««°™«» « he PI acquisition and delivery process. FIG. 2 

+u i f t j *u provides a block diagram of components that could be used 

on the personal information provider, presenting the per- \ . . ... * • -m. j ^ A 

sonal information to the end user via the client computer and 10 im P lement he present invention. The end user 210 

proxying subsequent interactions between the client com- a ^ s a ch ™ 1 computer 220 running client software 270 

puter and the personal information provider for a given 45 * hich ,n a P artlcu ' ar em bod.ment could be a general Web 

session with the personal information provider. b ™ ws f r * ucn 25 1 NaV ' gat0 , r , 0r Communicator Netscape). 

„, , , , , The client computer 220 utilizes the Internet 230 to access 

The above and other objects and advantages of the present a pi en ^ ne 240 mnfd Qn a p , nQSt 29Q ^ p , e[ ^ ne 240 

invention will become more readily apparent when reference examines stored PI 280 for freshness. Any stale PI items are 

is made to the following description, taken in conjunction 5Q refreshed by difectly reacquiring tne PI from the particular 

with the accompanying drawings. information provider's Web site 250 running on the provid- 

BRIEF DESCRIPTION OF THE DRAWINGS cr's computer system 260 accessed across the Internet 230. 

t • l • r « u * iu « i The PI engine 240 stores the fresh PI in its store 280 and 

FIG, 1 is a process diagram of the current process that end ... i ™ , , t . . .... 

r « i . . •! v. „, delivers the PI to a selected destination, in this instance 

users perform to access Internet available PI. ' 

™^ * . . , i r , . 55 across the Internet 230 to the client computer 220 which 

FIG, 2 is a block diagram of the components that could be dis { ^ mformation t0 the end user 210 usi the client 

used to implement present invention. 2JQ ^ pi engifle 24Q refreshes aU stak p , ^ & 

FIG. 3 is a block diagram of the components of the PI like manner prior t0 forwarding the aggregated PI to both the 

en S ine * store 280 and the delivery destination, the client computer 

FIG. 4 is a diagram of the current PI access architecture. 60 22 o in this instance. The PI engine 240 may refresh the PI 

FIG. 5 is a diagram of an architecture supporting PI access sequentially or in parallel. For example, the end user's 

utilizing an intermediary Web site. checking account balance would be updated through his 

FIG. 6 is a diagram of the cookie/client cache architec- bank's Web site, his email from his particular email site, his 

turc. portfolio information from his broker's site and his clcctric- 

FIG. 7 is a flowchart for accessing pages underlying 65 ity bill from his electricity company's site. 

particular PI via the traditional process of FIG. 1 and via FIG. 3 displays a block diagram of the components of the 

springboard technology. PI engine 240. The PI engine 240 is composed of both 
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storage and processing components. The three primary stor- 
age components are the PI store 280, the PI Provider store 
310 and the user store 360. The first storage component of 
the PI engine 240 is the PI store 280. The PI store 280 
contains each individual's PI record 375; the PI associated 5 
with a particular end user is segregated from the PI of all 
other end users. The PI engine also utilizes a provider store 
310 that maintains general parameters associated with par- 
ticular PI providers. The general parameters of a PI provider 
define the types of verification data necessary and the 1Q 
procedures to be followed to gain access to the particular PI 
provider. Each PI provider record also contains the types of 
PI provided hy the PI provider and the types of transactions 
supported by the provider. Along with the type of PI or 
transaction, the record also contains the additional types of 
data and procedures necessary to access the PI or execute the J 5 
transaction. A user store 360 is also necessary to maintain 
configuration and verification information concerning par- 
ticular end users. For each end user, the user selected PI 
providers, PI and transactions are registered along with the 
verification data necessary to acquire the PI or execute the 20 
transaction from the PI provider. 

The PI store 280 may be implemented in a variety of 
ways. Referring to FIG. 2, the PI store 280 may comprise a 
database residing on the PI Host 290. Under this approach, 
the PI for each individual end user 210 is stored as a separate 25 
record or object 375 in the database. In yet another 
embodiment, the PI for each end user 210 could be stored in 
a separate file 375, thus performing the task of segregating 
PI of different users at the file level. 

In addition, or as an alternative, the PI associated with 30 
each end user 210 may reside on his/her client computer 220 
using cookie technology as specified in D. Kristol and L. 
Montulli, "HTTP State Management Mechanism", Request 
For Comments (RFC) 2109, February, 1997 (available at 
http://www.ietf.org/rfc/rfc2109.txt), which is expressly 
incorporated herein in its entirety. The PI associate with the 35 
end user 210 would be stored as PI cookies 375. This 
implementation mechanism provides inherent support for 
segregating PI associated with one end user 375 from PI 
associated with all other end users. Utilizing this method as 
a substitute for a centralized store provides a layer of 40 
security against unauthorized access. As a further measure, 
PI data stored in cookies could be stored in an encrypted 
format. 

FIG. 6 provides a diagram of a typical implementation of 
the PI store 280 using cookie technology; references in the 45 
foregoing description are also made to FIG. 3 with respect 
to the internal workings of the PI engine 240. When an 
attempt is made to access PI by an end user 210 directly, or 
through an intermediary Web server, the PI access/transact 
component 340 of the PI engine 240 would retrieve stored 50 
PI 375 from the PI store 280. Under this approach, this 
stored PI 375 would be received directly from cookies sent 
by the client computer 220 of the end user 210. The PI 
access/transact component 340 would perform any decryp- 
tion if necessary. Any updates required would be obtained by 55 
direct access of PI providers 250. The PI deliver component 
350 would provide the mechanism for both updating the PI 
store 280 as well as transmitting the requested PI to the end 
user 210, directly or through an intermediary Web site. The 
PI deliver component 350 would place the updated PI in the 60 
PI store 280 by replacing the outdated PI cookies 375 stored 
on the client computer 220. The PI deliver component 350 
would also handle any encryption if necessary. The PI 
deliver component 350 would also be responsible for trans- 
milting requested PI. In a preferred embodiment, the PI store 65 
280 would be implemented using this cookie-based archi- 
tecture. 
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The user store 360 may be implemented in a variety of 
ways. Referring to FIG. 2, the user store 360 may comprise 
a database residing on the PI Host 290. Under this approach, 
the personal configuration data for each individual end user 
210 is stored as a separate record or object in the database. 
In addition, or as an alternative, the end user data could be 
distributed in a manner similar to the cookie/cache archi- 
tecture describe above with respect to the PI store 280. 

In a preferred embodiment, the user store 360 could be 
implemented through personal information configuration 
(PIC) files. PIC files store a personal profile such as name, 
address, and social security number in secure, encrypted 
fashion for each end user. PIC files facilitate automatic 
registration of end users with information Providers via the 
end user configuration component 330. This component will 
read the PIC file and, using retrieved personal information, 
prc-populate registration templates for selected Providers. 
Then, it will prompt the user to enter required information 
that is missing from profile, if necessary. If the information 
is complete, the registration is automatically completed. 
Next, the end user configure component 330 completes any 
Provider registration forms, gets responses and updates the 
end user's PIC. 

The four primary processing components access and 
manipulate the data in the three stores. The processing 
components may execute on a single processor, such as a file 
server computer system based on a Pentium class (MMX, 
PRO, II, III, etc.) central processing unit or an equivalent, or 
multiple processors. These four processing components are 
the Baseline configure component 320, the end user config- 
ure component 330, the PI access/transact component 340 
and the PI delivery component 350 as seen in FIG. 3, The 
Baseline configure component 320 provides the interface by 
which new user selectable PI providers are added to the 
system. This component 320 might be implemented in a 
variety of ways including trial and error followed by manual 
entry of configuration information, semi-automated trial and 
error (automated location of Hypertext Markup Language 
(HTML) <FORM> elements, Javascript functions and Java 
applets) followed by manual entry of configuration infor- 
mation or, preferably, configuration by example (executing 
the protocol in a simulated Web client where the simulated 
Web client automatically generates a list of required data and 
a list of steps in the access process). These processes would 
be utilized at two levels: the first level being the set of data 
and steps required for general access to the particular PI 
provider and the second level being the set of additional data 
and steps required, for accessing each particular piece of PI 
on the PI provider's site. The baseline configuration com- 
ponent 320 may be triggered independently when a new PI 
provider is added to the system, or it might be triggered as 
a result of a failure of the PI access/transact component 340 
potentially indicating a change in access requirements for 
the failed access. This latter warning would more likely 
result where the PI access/transact component 340 has made 
a comparison between requirements supplied by the Pro- 
vider store 310, both general to the PI provider and specific 
to the PI or transaction, and the end user data supplied by the 
user store 360 after seeking end user verification via a 
request of the end user to confirm the previously entered 
required access data via the end user configure component 
330 and found an inconsistency. When an inconsistency is 
determined, updates to the Provider store 320 are made to 
bring the Provider data into conformance with current 
access/transaction requirements. 

The end user configure component 330 allows an end user 
to select and configure PI and transactions of interest to the 
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specific user. This configuration information is maintained 
in the user store 360. When an end user initially subscribes 
to the system according to the present invention, the system 
allows the user to select the types and sources of PI and/or 
transactions desired. First, the system requests permission 5 
from the end user to act on his behalf to obtain any selected 
PI and to execute any authorized transactions. Next, the 
system provides the user with a list of known information 
suppliers and the types of PI supplied from and transactions 
supported by the particular PI provider from the Provider 30 
store 320. The system requests the verification data neces- 
sary for accessing each selected PI provider and the addi- 
tional data required by the particular Pis and/or transactions 
desired from that PI provider. Assuming the end user is 
already a registered user with the selected PI provider or the 15 
particular PI provider does not require prior registration, the 
data supplied by the end user is placed in the user store 360. 

One method of obtaining any cookie data would be for the 
end user to access each previously accessed PI utilizing the 
PI engine 240 as a proxy server. The PI engine 240 would 20 
pass the cookie data to the PI provider site with the appro- 
priate Web page requests to obtain the PI or execute the 
transaction and with the end user's permission retain a copy 
of the cookie data in the his record in the user store 360. An 
alternate means of obtaining the cookie data would be a 25 
direct upload of the cookie information from the end user's 
computer. In a preferred embodiment, no cookie data is 
necessary where a user is already registered with a provider. 
All that is necessary is the verification data for login. 

If the end user does not have the requisite information 30 
because he is not a registered user of a selected PI provider, 
the user configure component 330 prompts the user for the 
information necessary to register the end user with the PI 
provider and performs the registration procedure required by 
the PI provider. A simulated Web client could perform this 35 
process automatically supplying the access data as required 
and sending any necessary cookie data. The manner in 
which such a simulated client registers the end user depends 
significantly upon the interaction method used on the PI 
provider Web site. If the Web site uses HTML forms and 40 
common gateway interface (CGI) applications, the end user 
configure component 330 can formulate a uniform resource 
locator (URL) to replicate the effect of actual form usage and 
submit this URL to the simulated Web client. The use of a 
URL to mimic an HTML form is equivalent to manually 45 
entering the data into the Web <FORM> element. See 
Kerven, Foust, Zakour, HTML 3.2 Plus How-To, Waite 
Group Press, 1997, pp. 559-569. If the Web site uses a 
mixture of HTML forms and Javascript functions, a simu- 
lated Web client with a modified Javascript interpreter could 50 
effectively register the user by following the end user 
registration process for the particular PI provider. The reg- 
istration process to follow would be obtained from the 
record of the particular PI provider in the Provider store 320. 
The Javascript interpreter in the simulated Web client would 55 
follow this procedure and supply the data supplied by the 
end user. A similar process could be used if the registration 
process on the PI provider Web site utilizes a Java applet. A 
Web client with a modified Java bytecode interpreter could 
effectively register the user by following the end user 60 
registration process stored for the particular PI provider in 
the Provider store 320. The bytecode interpreter would 
supply the data previously entered by the end user rather 
than requiring interactive input from the end user. If the PI 
provider Web site utilizes a combination of forms, scripts 65 
and applets, the individual procedures above could be used 
in combination to accomplish the desired registration. 
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With reference to FIG. 2 and FIG. 3, a modification of the 
Java virtual machine (VM) could allow for automated 
interaction between the various functional components of 
the PI Engine 240 and Java applet available through pro- 
vider Web servers 250. Templates for interacting with par- . 
ticular applets could reside in the Provider store 310, The 
specific input data utilized by such templates could be stored 
in the User store 360. When a functional component such as 
the end user configure 330 or the access/transact 340 com- 
ponents requires automated communication with a Java 
applet on a provider Web server 250, the modified Java VM 
would facilitate this interaction. 

FIG. 10 illustrates one process utilizing such a modified 
Java VM to achieve such automated interaction. The func- 
tional component requiring interaction identifies the pro- 
vider and the particular applet on that provider with which 
the component needs to interact in step 1010. In step 1020, 
the component accesses the necessary template for interact- 
ing with the applet from the Provider store 310. Proceeding 
to step 1030, the component accesses the User store 360 to 
obtain the data required by the template. The modified Java 
VM interprets the applet in step 1040 and, rather than 
requiring interactive input from a user as in a normal Java 
applet execution, awaits input from or output to the inter- 
acting functional component of the PI engine. In step 1050, 
the functional component supplies input data to the modified 
Java VM according to the accessed template and retrieved 
data and receives output data according to the accessed 
template. Steps 1040 and 1050 repeat so long as additional 
input to or output from the applet continues. Upon termi- 
nation of the applet, the functional component continues 
with its own processing in step 1060. 

A successful registration could result in displaying the 
registration information to the end user for future reference. 
Further, the end user configure component 330 stores the 
requisite access verification data for the PI provider and the 
additional data required to access the selected PI or trans- 
action in the user store 360. 

In a preferred embodiment of such automated registration, 
any necessary cookie data would be accepted and stored as 
needed by the end user configure component 330. In many 
cases, cookie data is session specific and, therefore, of little 
long term utility. Cookies generated during the registration 
process are used solely during the registration process then 
discarded once registration is complete. 

A failed registration could result from several situations. 
First, the end user attempting to register with the PI provider 
does not qualify for registration; for example, an end user 
attempting to register with a bank with whom the end user 
does not maintain an account and where the bank only 
allows access to account holders. Next, the end user may 
have supplied improper or incorrect information. For 
example, a bank registration process might require a social 
security number, a password, a bank account number and the 
maiden name of the end user's mother; if the user entered an 
incorrect social security number, the registration process 
would fail. Finally, the PI provider may have altered the 
registration procedure for its Web site. In this situation, 
following the process supplied from the Provider store 320 
would yield a failed registration. In the instance of any 
registration failure, the end user could be presented with the 
data initially supplied to the system for registration. The 
system could then ask the end user to double check the 
correctness of the information provided and to correct and 
resubmit the data if an error is found. A second failure 
resulting from the submission of identical requisite data 
might generate an error message presented to the end user 
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stating that either the end user is ineligible to access the 
selected PI from the selected PI provider or that alteration by 
the PI provider may have caused an error in registration. 
This second failure could also trigger a warning suggesting 
the need to potentially reconfigure the record for the PI 
provider in the Provider store 320. 

Ultimately, the user store 360 would contain a record for 
each end user. This record as previous described could be a 
database entry, one or more cookies or a file such as a PIC 
file. Each record would identify the selected PI providers 
along with the general access verification data needed and 
also under each PI provider would be a list of PI supplied 
and transactions supported by the particular PI provider of 
interest to the end user along with the additional data, if any, 
necessary to access that PI or execute that transaction. 
Specifically, duplicative information such as an end user's 
name would be centrally stored in the record once. 

The end user configure component 330 also allows the 
end user to select one or more delivery destinations. One 
destination might be the end user's computer as exemplified 
by the client computer 220 running client software 270 in 
FIG. 2; however, a computer is not the only destination 
contemplated by the present invention. The destination for 
PI delivery could include facsimile, electronic mail, 
telephone, conventional mail, pager, other wireless device 
such as a Palm Pilot (3 Com), Web page or channel, Web 
browser or other delivery mechanism. The present invention 
also contemplates indirect access of PI by the end user 
utilizing a Web site as an intermediary; however, such 
indirect access would not require the end user to specify a 
delivery destination unless additional delivery options were 
desired. 

Further, access to the end user configure component 330 
may occur through direct access to the PI engine via the 
Internet as contemplated by the client computer 220 running 
client software 270 in FIG. 2; however, alternative methods 
of access are equally feasible. For example, the user might 
indirectly access the PI engine through the use of an inter- 
mediary Web site. A telephone interface to allow access to 
the end user configure component is another alternative. 

With reference to FIG. 3, the PI access/transact compo- 
nent 340 supports the update, acquisition and transaction 
functionality of the PI engine 240. The PI access/transact 
component 340 is responsible for accessing and storing user 
PI and executing transactions authorized by the end user. 
When access or update is needed for a selected end user, the 
PI access/transact component 340 combines information 
from the Provider store 320 and the user store 360 to update 
end user PI in the PI store 280. For each piece of PI requiring 
access or update, the PI access/transact component 340 
looks up the access procedure and information needed for 
the particular PI in the Provider store 320. The verification 
and access data is found in the user store 360. The PI 
access/transact component 340 utilizes this information to 
connect to the PI provider's Web site across the Internet and 
to access the PI. Where multiple pieces of PI require 
updating or access, the accesses may occur in series or 
parallel. 

Requested transactions would be similarly supported. For 
each transaction, the PI access/transact component 340 
combines information from the Provider store 320 and the 
user store 360 to perform the requested transaction. The PI 
access/transact component 340 looks up the transaction 
procedure and information needed for the particular trans- 
action in the Provider store 320. The verification and access 
data is found in the user store 360. The PI access/transact 
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component 340 utilizes this information to perform the 
transaction across the Internet from the PI provider's Web 
site 

A simulated Web client could perform access or transac- 

5 tion processes automatically supplying access and verifica- 
tion data as necessary. The manner in which such a simu- 
lated client access PI or execute transactions depends 
significantly upon the interaction method used on the PI 
provider Web site. If the Web site uses HTML forms and 

1Q common gateway interface (CGI) applications, the PI 
access/transact component 340 can formulate a uniform 
resource locator (URL) to replicate the effect of actual form 
usage and submit this URL to the simulated Web client. The 
use of a URL to mimic an HTML form is equivalent to 

15 manually entering the data into the Web <FORM> element. 
See Kerven, Foust, Zakour, HTML 3.2 Plus How-To, Waite 
Group Press, 1997, pp. 559-569. If the Web site uses a 
mixture of HTML forms and Javascript functions, a simu- 
lated Web client with a modified Javascript interpreter could 

20 effectively access the PI or perform the transaction by 
following the PI access/transact process for the particular PI 
or transaction respectively. The access or transaction process 
to follow would be obtained from the record of the particular 
PI or transaction in the Provider store 320. The Javascript 

25 interpreter in the simulated Web client would follow this 
procedure and supply the data found in the user store 360. 
A similar process could be used if the PI provider Web site 
utilizes a Java applet. A Web client with a modified Java 
bytecode interpreter could effectively access PI or perform 

3Q transactions by following process stored for the particular PI 
or transaction in the Provider store 320. The bytecode 
interpreter would supply the data from the user store 360 
rather than requiring interactive input from the end user. If 
the PI provider Web site utihzes a combination of forms, 

35 scripts and applets, the individual procedures above could be 
used in combination to accomplish the desired access. 

In a preferred embodiment of such automated accesses or 
transactions, any necessary cookie data would be accepted 
and stored as needed by the PI access/transact component 

40 340. In many cases, cookie data is session specific and, 
therefore, of little long term utility. Cookies generated are 
used solely during these functions then discarded once the 
mining or transaction operation is complete. 
In order to provide personal information to an end-user 

45 quickly after login, it is necessary for the PI access/transact 
component 340 to select an end user for data harvesting prior 
to the login of the end user. One approach to this solution is 
to update all of an end user's PI whenever the end user, 
directly or through an intermediary Web site, requests access 

50 to his/her PI. Another approach would be to update all of an 
end user's PI supplied by a particular provider whenever PI 
from that supplier is requested. 'Ill us, the act of logging into 
the system by an end user effectively selects that end user for 
immediate PI update. However, this approach may result in 

55 the inefficient use of the PI Engine 240 resources. 

Given the large number of potential users and providers, 
and the goal of providing the freshest data possible, another 
embodiment includes an algorithm developed to optimize 
the schedule in which end users are selected for data 

60 harvesting from a provider. This algorithm factors in the 
provider's update policy, the user's login habits, and the 
user-provider account characteristics. The proper applica- 
tion of the algorithm should ensure that PI is harvested as 
infrequently as possible for a given user, thus minimizing 

65 system resource consumption. 

If the next provider update lime and the next expected 
user login can be accurately predicted, a model can be 
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created that will allow for smarter harvesting. Rather than Since there is a natural, even distribution of accounts 
harvesting data for all users of a provider at once when the updated by a provider for a given day, a user's account can 
provider updates its site, the harvesting can be spread out be harvested an hour before his expected login time. As in 
over time based on expected login times of users and the Type I algorithm, users with a "no confidence" model 
network activity profiles. For example, if Provider A updates 5 should be immediately harvested, 
its site on Friday night and a large number of users of that x ype ui Provider Policy Scheduling Algorithm 
provider are not expected to login again until Monday This type of policy is the most difficult of all. Since the 
morning, the harvesting load can be distributed across prov ider updates a user's account in a non-deterministic 
multiple days. This has the advantage of minimizing both maQri er, a decision must be made for each provider as to the 
the peak loading of the PI Engine 240 as well as consump- 10 cr iticality of the information relative to the user. For those 
tion of the provider's bandwidth by the PI Engine 240. To hignly criticaI prov iders, each user account should be har- 
gain this optimization, the PI Engine 240 must maintain and vested dailVj per haps even more frequently. For those less 
refine models of each provider and user. Such data can be critical providers, user accounts should be harvested less 
maintained in the provider store 310 and the user store 360 frequently and possible when overall system activity is low. 
respectively. 15 Th e pj deliver component 350 is responsible for format- 
Each time a user utilizes the PI Engine 240, the time and ting and delivering the PI to the end user. Usually delivery 
date may be captured. Once a sufficient number of login on ly occur subsequent to updating all stale PI. The PI 
times are accumulated, they may be analyzed with respect to w in be delivered to one or more destinations (e.g. facsimile, 
day of month, day of week, and time of day. These are used telephone, pager, Web browser, e-mail, etc.) as specified in 
in a model to predict the next expected user login. The model 2 o the user store 360 except where the PI is accessed via an 
is then tested and refined with subsequent logins until a intermediary Web site. Where the destination is not an 
measurable degree of confidence is established. Once high intermediary Web site, the PI deliver component 350 per- 
confidence is determined, the user model is incorporated forms all formatting necessary to deliver the PI to the 
into the adaptive harvesting scheduler. Until a high confi- appropriate destinations. For example, where the destination 
dence level is reached for a particular end user one of the 2 5 is a Web browser, the PI would be formatted as an HTML 
aforementioned harvesting approaches may be used, document, or where the destination is a telephone, the PI 

Each provider updates its site based on policy driven by would be submitted for voice synthesis and transmission, 

their unique resources and business model. For any adaptive In the case of an intermediary Web site, the PI is delivered 

scheduler to work, the policy for each provider must be in a format configurable by the intermediary Web site. FIG. 

modeled. In some cases, the policy is self-evident. In others, 30 5 pictorial illustrates a possible embodiment of the current 

it must be determined empirically. A provider's policy will invention utilizing an intermediary Web site. An end user 

most likely fall into one of the following categories: 210 utilizes a client computer 220 to access an intermediary 

Type I. Updated periodically for all users Web site 510 across the Internet 230. The end user 210 logs 

Type II. Updated periodically relative to each user into the intermediary Web site 510. The intermediary Web 

Type III. Updated in a. pseudo-random manner 35 site 510 contacts the PI engine 240 across the Internet 230 

The following three approaches may be used based upon and directly receives the end user's PI updated as required 

provider type. from tne PI provider Web sites 250. The intermediary Web 

Type I Provider Policy Scheduling Algorithm site 510 receives the PI, incorporates it into pages according 

1. Assume users with a "no confidence" model have an 10 ils particular formatting style and graphical user interface 
immediate login time. 40 * nd dehven. these pages to the end user 210 The use of the 

2. Order the users chronologically based on their pre- PI eD ^ e 240 * 5™"*™? t0 the end USCr f% F ( Urther ' a ° 

t» j r intermediary Web site 510 serving aggregate PI to an end 

dieted login time. J , t ,., , -n ■ 1. 1 

„. .„ , n „ ,1 user 210 may, and most likely will, simultaneously serve as 

3. Shift the expected login time for all users back one a pi provider 

k° ur ' 45 In another embodiment, this formatting occurs via a 

4. Perform a density curve fit along temporal boundaries dynamic HTML generation system combining stylistic and 
to get a polynomial function that can be used to layout information from a variety of sources. The PI deliver 
determine the number of user accounts to harvest for a component 350 generates custom HTML pages dynami- 
given epoch. cal l y These pages are customized based on a number of 

5. Perform an integral matching algorithm with the 50 stylistic factors (such as background color, foreground color, 
inverse of the network activity curve for the time period font sizCj color and styl6) page layoutj etc ) from a variety of 
in question to adjust the distribution curve. sources and content from a variety of sources. Information 

6. If possible, re-distribute peak harvesting time toward providers, distributors, the end user, the PI deliver compo- 
time zero to flatten the distribution curve. n ent 350 or any combination of these sources, or other 

7. Assign harvesting times to the sorted users according to 55 relevant sources, may provide customization factors used in 
the distribution curve. the page generation. Finally, each HTML page must be filled 

8. Monitor time and harvest the user account when in with data. The data used in such pages may originate from 
appropriate. such sources as information providers, distributors, the end 

Type II Provider Policy Scheduling Algorithm user, the PI deliver component 350 or any combination of 

For each provider that falls into this category, an attribute 60 these sources, or other relevant sources. The required solu- 

of the user must be identified that determines when the tion is a system representing a generic algorithm for per- 

personal information is updated. In some cases, the user may forming such HTML generation at run-time. The style and 

need to be queried for the information. In others, it can be content may be provided in any suitable format such as the 

determined from the harvested information. If the attribute Extensible Stylesheet Language (XSL), as specified by W3C 

cannot be established for a user via either of these means, the 65 in http://www.w3.org/TR/WD-xsl/, which is expressly 

provider site may be monitored daily for changes in personal incorporated herein by reference in its entirety, and/or the 

information until a pattern is established. Extensible Markup Language (XML) as specified by W3C 
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in http://www.w3.org/TR/REC-xml, which is expressly bypassed or potentially used as the component responsible 

incorporated herein by reference in its entirety, or other for servicing API requests for data. Under this model, the 

suitable formatting standard. The key requirements for such intermediary Web site would be responsible for all format- 

a system are complete encapsulation of the problem domain ting decisions with respect to the raw PI data. This imple- 

and run-time efficiency, 5 mentation option requires additional programmatic support 

In preferred embodiments, the solution is based on the b V the intermediary Web site but allows for greater flexibil- 

following basic model as depicted in FIG. 8: Uy in the use of the raw PI. 

^ „ . , ,>i,. The ability to utilize an intermediate Web site to deliver 

1. Six sets of customization factors are identified: dis- pi ^ of sigmficant utility . ^ capab ility allows an end user 
tnbutor content 810, provider content 820, distributor already familiar witn an existing PI prov i der to access not 
style specification 830, provider style specification 840, ™ only the PI associated with the particular PI provider but also 
user-specific content 850 and user-specific style 860. a n p[ f rom ot h e r PI providers in the comfort of a familiar 

2. Each set of customization factors 810-860 is consid- user interface, namely the existing PI provider Web site. In 
ered a separate, independent and required input to the this situation, the request for PI would directly originate with 
run-time system 870 that performs dynamic page gen- the intermediary PI provider Web site and indirectly from 
e ration. 15 the end user. Security measures would restrict access to 

i c «u • « *oift ojcn „r'ii w~ r f„ nY iiT authorized intermediate Web site access. These measure 

3. Each input olU-ooU will be in torm ot an XMLstream. . Lj . . , c , , . . 

r might include verification of the end user and the interme- 

4. Output 880 will be in form of an HTML stream. diate Web site p urt her, verification of the association 

5. The dynamic page generation system 870 will produce between the end user and the particular intermediate Web 
valid output 880 for each set of six valid inputs 20 site might also be required for additional security. 
810-860. In addition, the use of an intermediary Web site also 

FIG. 9 illustrates an actual run -time sequence of input supports a novel transaction model. In this transaction 

processing by such a system 870: model, the intermediary site subsidizes, or fully 

1. Distributor content 810 is combined with provider compensates, the PI engine administrator for services pro- 
content 820 and with user-specific content 850 to 25 vided to the end user. These transactions are facilitated via 
produce a complete content specification 930 by the the auditing and tracking capabilities of the PI engine. These 
content merger unit 910. capabilities allow the calculation of per user fees, per 

2. Distributor style 830 is combined with provider style transaction fees, per access fees or some combination 
840 and with user-specific style 860 to produce a thereof to be assessed. The assessed values could be directly 
complete style specification 940 by the style merger 30 char S ed t0 the intermediary Web site. Alternatively, such 
unit 920 values could be debited from a minimum monthly fee 

3. The style specification 940 is applied by the style <! har S edt0 the jntermedhry Web site with any fees beyond 

applicator 950 to content specification 930 in order to the "7 I ! ? ^ T ^ h 

J£a„~ ™ e«n F IG - U depicts a flowchart of a typical process according 

produce the resulting page 880, . , <!l j j i t-l • * j- u •* 

t j t i4i i * *u ui a 35 to the described model. The intermediary Web site pays a 

In order to completely encapsulate the problem domain, . . . ^ n T J nm #u D t 

f „ . . ' . . , . A tr . tam mmimum monthly fee in step 1110. In step 1120, the PI 

the following requirements must be placed on the system . , . * • t ? - . a- 

g^Q. r engme audits and tracks end user usage via the intermediary 

J ^ ««« • i j v » ,w w eb site. The audited usage is used to assess a fee on a per 

1. Each XML input 810-860 is a valid XML stream. ^ per ^ transaction or combination basis. In step 

2. All content specifications 810, 820 and 850 are valid 40 1130j ^Ls audited amount is debited from the fee paid in step 
with respect to the same Document Type Definition. mo In step 1140 the intermediary Web site is charged for 

3. All style specifications 830, 840 and 860 arc valid with an y fees in excess of the minimum fee paid. 

respect to the same Document Type Definition (such as Often an end user may require access to the underlying 

the XSL DTD standard). Web page generated by the provider of a particular piece of 

4. The merging units 910 and 920 whose task is to take 45 PI. The delivery component may deliver not only the PI but 
two or more XML streams and produce a combined also an access point directly to the provider's page supplying 
XML output must be able to produce such output for that PI. The access point may take the form of a link, a form 
any set of valid XML inputs. button or some other interactive access mechanism. 

Another method of performing this task would be to Such an access point significantly improves the efficiency 

format PI as HTML elements with predefined CLASS 50 of accessing the underlying page by the end user as exhibited 

attributes. The intermediary Web site receiving these eie- by FIG. 7. In the traditional process 100 for accessing PI, the 

ments could dynamically include them in page forwarded to end user must proceed through numerous intermediary 

the end user of the PI. The pages incorporating such ele- pages requiring a variety of often tedious interactions before 

ments could include different style information associated reaching the desired page. 

with the predefined CLASS set. Level 1 cascading style 55 The end user must first identify the Provider 110. Next, 

sheet convention could be used to implement such config- the end user must locate the Providers Web address 120. 

urability. See Kerven, Foust, Zakour, HTML 3.2 Plus How- Then, the user the requests the Provider's login page 130. If 

To, Waite Group Press, 1997, pp. 651-693; Walsh, "An the end user does not remember the requisite information, 

Introduction to Cascading Style Sheets/' World Wide Web this information must be found, or the desired information 

Journal, Winter 1997, pp. 147-156. This option requires 60 will remain inaccessible via the Web. The end user then 

minimal programmatic support by the intermediary Web site navigates the Provider's Web site 140. This often entails 

but restricts to some degree the intermediary Web sites visiting the Provider's main page 710 followed by viewing 

flexibility in presenting the PI to the end user. a variety of intermediate pages on the Provider's site 720. 

Alternatively, an intermediary Web site could develop an The end user may have to backtrack several times to the 

application utilizing a standardized application program- 65 main page 710 or accidentally leave the system entirely 

ming interface (API) to directly access the PI data. In this forcing a second login 140 before finally locating the desired 

instance, the PI deliver component 350 could either be information 150. 
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Utilizing springboard technology, the entire process 750 
is streamlined into the single click of an access point. The 
delivery component of the PI Engine delivers an access 
point to the Provider's underlying page along with the PL As 
a consequence, the end user need only perform a single 
interaction with the PI presentation page 760. This interac- 
tion immediately performs the requisite interactions with the 
Provider's Web site to bring the user to the desired under- 
lying Web page 150. 

In one embodiment, this springboard technology could be 
implemented utilizing a Java applet. With respect to FIG. 2, 
the applet would be downloaded from the PI Host 290 by the 
end user's client software 270, usually a Web browser, and 
executed locally by the end user's computer 220. The applet 
would drive the client software 270 to the desired page. Such 
an applet could retrieve procedures and data for driving the 
client software from the Provider store 310 and the User 
store 360. 

In a further embodiment, the PI engine 240 could act as 
a proxy server directly accessing the Provider store 310 and 
the User store 360 as required. When the PI engine 240 
receives the request to jump to the source of a particular 
piece of PI, the engine performs the necessary actions to 
navigate to the desire page and forwards the desired page to 
the end user's computer 220. Further interactions with the 
page might require additional proxying by the PI engine 240 
as accumulated cookie data may reside on the PI Host 290. 
This embodiment is limited to use in handling standard 
HTTP traffic rather than secure HTTP traffic. 

In a preferred embodiment, the springboard provides the 
end user with automated login into the PI Provider site 250 
and allows the end user 210 to navigate via the client 
software 270. This automated login could be accomplished 
through the utilization of a hypertext transfer protocol 
(HTTP) redirect. Upon receiving the a springboard access 
request from the end user 210 via the client software 270, the 
PI Host 290 requests the login page from the PI Provider site 
250 targeted by the springboard access. The PI engine 240 
running on the PI Host 290 receives this login page and 
constructs a login request by accessing the proper data in the 
Provider store 310 and the User store 360. The login request 
is embedded in the HTTP redirect which is forward to the 
client software 270. The client software 270 is redirected to 
the targeted PI Provider site 250, and the end user 210 is 
automatically logged into this site. 

Alternatively, this functionality could be implemented via 
a Java applet as described above. In addition, the PI engine 
240 could generate a Javascript page containing the perti- 
nent login request rather than an HTTP redirect. The Java- 
script page could be returned to the client software 270. This 
page would then be executed by the client software 270 to 
accomplish the automated login. 

The PI engine 240 of FIG. 3 may also include a site 
monitor 370 processing component. This component would 
systematically monitor supported PI provider Web sites for 
changes. This component enhances the ability of the system 
to identify alterations in PI provider Web site procedures, 
data requirements and cookies requirements. This compo- 
nent increases system efficiency by supplementing or sup- 
planting alteration identification via feedback from the PI 
access/transact component 340.. 

A further embodiment of the present invention might 
support the localize manipulation of PI. This could be 
accomplished where the client software 270 running on the 
client computer 220 in FIG. 2 is a specialized Web client 
rather than a general Web client such as Netscape. This 
specialized client might utilize Web channel technology to 
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automate the local PI download and update processes. 
Where the PI store is implemented via the aforementioned 
cookie architecture, this specialized client may provide 
direct local access to stored PI. 

5 In another embodiment, the PI engine 240 of FIG. 3 might 
support both system supported PI providers as well as PI 
providers specific to particular end users. In this 
embodiment, an end user is not limited to PI available from 
PI providers present in the Provider store 310. For an end 

1Q user to add PI provided by a non-supported PI provider, the 
end user would access the Baseline configure component 
320 and create a configuration for the non-supported PI 
provider. The PI provider and PI configuration along with 
the verification and access data would be stored along with 
the user's record in the user store 360. 

15 A further embodiment of the present invention supports 
the inclusion of PI transaction procedures and access 
requirements in the Provider store 310 of FIG. 3. The end 
user specific information necessary to realize such a trans- 
action would reside with the user record in the user store 

20 360. The functionality of the PI access/transact component 
340 would expand to support the performance of transac- 
tions. This additional functionality could be supported in a 
manner similar to the procedure described above with 
respect to performance of access utilizing a simulated Web 

25 client. A further feature of this embodiment would include 
automated or semi-automated account management by pro- 
viding trigger events to automatically initiate a transaction. 

For instance, with reference to FIG. 2 an end user 210 
would be able to maintain his/her accounts online through 

30 the PI Engine 240, If an information provider has the 
capability of receiving payments online, the PI Engine 240 
could support complete or partial automation of such trans- 
actions. If there is a billing due date for a certain information 
provider, PI Engine 240 could flag that information and send 

35 email to the end user 210 notifying him/her of the bill due. 
Thus, the user will not have to check each of his/her 
providers individually for due date information. The PI 
Engine 240 could also automated payments on a limited 
range of billing amount for providers who allow payments 

40 over their Web servers 260, then send an email to the user 
with the notification of payment. 

Due date acquisition could be accomplished utilizing the 
PI access/transact component 340 seen in FIG. 3. The due 
date information would be available to the end user via any 

45 delivery means supported by the PI deliver component 350. 
The PI access/transact component 340 would use standard 
e-commerce bill-paying methods to pay the user's bill/s to 
the provider if he/she chooses. Once the bill is paid, then an 
email notification will be sent to the user with the provider 

50 information and payment information. The user can specify 
the range of amount stored in the user store 360 that will be- 
paid automatically. If the bill exceeds the amount specified 
by the user, then PI engine will simply send out an email 
notification to the user instead of paying the bill automati- 

55 cally. 

The embodiments described above are given as illustra- 
tive examples only. It will be readily appreciated that many 
deviations may be made from the specific embodiment 
disclosed in this specification without departing from the 
60 invention. Accordingly, the scope of the invention is to be 
determined by the claims below rather than being limited to 
the specifically described embodiments above. 

What is claimed is: 

1. A method for automated access to personal information 
65 associated with an end user, wherein the personal informa- 
tion is stored on a personal information provider, the method 
comprising the steps of: 



04/05/2004, EAST Version: 1.4.1 



US 6,405 : 

17 

(a) presenting on a client computer associated with the 
end user and in communication with the personal 
information provider via a network a representation of 
personal information and a link corresponding to the 
personal information stored on the personal informa- 5 
tion provider; and 

(b) upon activation of the presented link, transmitting a 
page containing a form which includes login informa- 
tion that upon opening by the client computer redirects 
the client computer to a post login page on the personal 1Q 
information provider in accordance with a protocol, the 
personal information accessible to the client computer 

in accordance with the protocol also being accessible 
by the end user via the network independently of the 
method for automated access to personal information. 

2. A method for automated access to personal information 
associated with an end user, wherein the personal informa- 
tion is stored on a personal information provider, the method 
comprising the steps of: 

(a) presenting on a client computer associated with the 2Q 
end user and in communication with the personal 
information provider via a network a representation of 
personal information and a link corresponding to the 
personal information stored on the personal informa- 
tion provider; 25 

(b) upon activation of the presented link, downloading an 
application to the client computer, wherein the down- 
loaded application upon execution on the client com- 
puter performs the steps of: 

(i) connecting to the personal information provider; 30 

(ii) navigating to the personal information on the per- 
sonal information provider using a protocol for 
instructing the client computer how to access the 
personal information via the network, the personal 
information accessible to the client computer using 35 
the protocol also being accessible by the end user via 
the network independently of the method for auto- 
mated access to personal information; and 

(iii) presenting the personal information to the user of 
the client computer. 40 

3. The method of claim 2, and further comprising the steps 

of: 

(c) transmitting end user data associated with the end user 
to the client computer; and 

(d) transmitting personal information provider data asso- 45 
ciated with the personal information provider to the 
client computer. 

4. The method of claim 3, wherein the step of transmitting 
personal information provider data associated with the per- 
sonal information provider comprises transmitting a navi- 50 
gation script corresponding to the personal information. 

5. The method of claim 4, wherein the step of transmitting 
end user data associated with the end user comprises trans- 
mitting end user data associated with the end user based on 
the transmitted navigation script. 55 

6. The method of claim 2, and further comprising the step 
of generating an application for downloading to the client 
computer based on personal information provider data asso- 
ciated with the personal information provider, on the per- 
sonal information and on end user data associated with the 60 
end user. 

7. A method for automated access to personal information 
associated with an end user, wherein the personal informa- 
tion is stored on a personal information provider, the method 
comprising the steps of: 65 

(a) presenting on a client computer associated with the 
end user and in communication with the personal 
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information provider via a network a representation of 
personal information and a link corresponding to the 
personal information stored on the personal informa- 
tion provider; 

(b) upon activation of the presented link, driving the client 
computer to the personal information stored on the 
personal information provider by performing the steps 
of: 

(i) connecting to the personal information provider; 

(ii) navigating to the personal information on the per- 
sonal information provider using a protocol for 
instructing the client computer how to access the 
personal information via the network, the personal 
information accessible to the client computer using 
the protocol also being accessible by the end user via 
the network independently of the method for auto- 
mated access to personal information; 

(iii) presenting the personal information to the user of 
the client computer; and 

(iv) proxying subsequent requests from the client com- 
puter to the personal information provider. 

8. A computer- readable storage device storing instructions 
that upon execution cause a processor to automatically 
access personal information associated with an end user, 
wherein the personal information is stored on a personal 
information provider by performing the steps comprising of: 

(a) presenting on a client computer associated with the 
end user and in communication with the personal 
information provider via a network a representation of 
personal information and a link corresponding to the 
personal information stored on the personal informa- 
tion provider; 

(b) upon activation of the presented link, downloading an 
application to the client computer, wherein the down- 
loaded application upon execution on the client com- 
puter performs the steps of: 

(i) connecting to the personal information provider; 

(ii) navigating to the personal information on the per- 
sonal information provider using a protocol for 
instructing the client computer how to access the 
personal information via the network, the personal 
information accessible to the client computer using 
the protocol also being accessible by the end user via 
the network independently of automatic access by 
the processor of personal information caused by 
execution of the instructions; and 

(iii) presenting the personal information to the user of 
the client computer. 

9. A system for automated access to personal information 
associated with an end user, wherein the personal informa- 
tion is stored on a personal information provider in com- 
munication with a client computer via a network, the system 
comprising: 

(a) a user store for storing data associated with the end 
user, the data associated with the end user including 
information identifying a plurality of information pro- 
viders storing personal information associated with the 
end user; 

(b) a personal information provider store for storing data 
associated with the personal information provider, the 
data associated with the personal information provider 
including a protocol for instructing a processor how to 
access the personal information via the network; and 

(c) a processor in communication with the user store and 
the personal information provider store, the processor 
for performing the steps of: 

(i) presenting on a client computer associated with the 
end user a representation of personal information and 
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a link corresponding to the personal information stored 

on the personal information provider; 

(ii) upon activation of the presented link, downloading 
an application to the client computer, wherein the 
downloaded application upon execution on the client 5 
computer performs the steps of: 

(A) connecting to the personal information provider; 

(B) navigating to the personal information on the 
personal information provider using the protocol, 
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the personal information accessible to the client 
computer using the protocol also being accessible 
by the end user via the network independently of 
the system for automated access to personal infor- 
mation; and 

(C) presenting the personal information to the user of 
the client computers. 

* * * * * 
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REMOTE BOOKMARKJNG FOR WIRELESS 
CLIENT DEVICES 

BACKGROUND OF THE INVENTION 

1. Field of the Invention 

The present invention relates to wireless client devices 
and, more particularly, to a. remote bookmarking for wireless 
client devices. 

2. Description of the Related Art 

The explosion of hypertext based technologies has spread 
to the domain of wireless communication systems. Wireless 
client devices (e.g., two-way pagers, cellular phones, palm 
sized computing devices and personal digital assistants 
(PDAs)) and wireless network protocols have been designed 
which permit interactive access to remote information ser- 
vices (e.g., directory services, financial information, new 
services, sport information and traffic & weather reports) 
through a variety of wireless and wired networks, most 
notably the World Wide Web (WWW) service of the Inter- 
net. 

One aspect of this technology that has lagged behind the 
rest is that of input technology and data entry. The primary 
method of data entry for most wireless client devices is by 
a keypad. Due to size constraints and cost considerations, 
the keypads of these wireless client devices are particularly 
cumbersome. Keypads usually have between 16 and 24 
keys, which is a sufficient number for numeric input but very 
inefficient when dealing with a standard alphanumeric data 
set (i.e., ASCII). 

A user requesting information from the Internet accesses 
information servers using a web browser. For example, a 
user requesting information on stock purchases might input 
the following string: 

http://www.stocktips.net/ 

Individual web addresses of this type is easily entered in 
an address box of a web browser used with standard desktop 
and laptop computers. Such web browsers can, for example, 
include Netscape Navigator from Netscape Communication 
Corporation or Microsoft Explorer from Microsoft Corpo- 
ration. However, most users have a plurality of such sites 
which are frequently revisited. For the user's convenience, 
web browsers have also provided a bookmark function that 
allows a user to save the web addresses of those web sites 
that the user desires to return to in the future. 

Bookmarks for a web browser operate very similar in 
function to the bookmarks used to hold a place (a page or 
section of interest) in a book. In the case of the web browser, 
the bookmark is electronic and the place being held is an 
electronic document (e.g., a web page) located on an infor- 
mation server and particularly identified by a uniform 
resource locator (URL). A user bookmarks a web page of 
interest using a menu selection provided by a user interface 
of the web browser. For example, Microsoft Explorer has a 
"favorites" menu that allows a user to provide a bookmark 
(and a title or label for the bookmark) to the web page 
currently being viewed by the web browser. 

Bookmarks offer two very significant conveniences: 1) 
Bookmarks free users from having to remember or write 
down uniform resource locators (URLs) for information 
sites of interest; and 2) Bookmarks significantly increase 
information site access speeds by minimizing navigation 
actions with the user interface. In today's fast paced techno- 
environment, such conveniences have become very impor- 
tant for service providers and users alike. 

Acceptance of wireless client devices with network access 
(e.g., Internet and intranets) will be significantly improved if 
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users can be presented with a user interface that helps to 
minimize the limitations (e.g., limited processing/memory 
capabilities and a cumbersome user interface) of these 
devices. The use of bookmarks in conjunction with these 
5 devices will represent a significant advance in the desired 
direction. 

The existing approaches to use of bookmarks on wireless 
client devices have various problems. One problem with 
existing approaches is that several navigation actions are 

10 required to select a single bookmark. Each navigation action 
is time consuming and leads to user dissatisfaction. Another 
problem associated with using bookmarks in conjunction 
with wireless client devices is that transmission efficiency 
when using bookmarks is low because URLs, which can be 

is lengthy, need to be transmitted from the wireless client 
devices in requests for the bookmarked documents identified 
by the URLs. Still another problem is that with existing 
approaches to bookmarks, the URLs for the bookmarks need 
to be provided on or obtained by and stored in the wireless 

20 client device seeking to make use of a bookmark. Although 
storage of bookmarks and their associated URLs on desktop 
and laptop computers does not significantly impact the 
memory resources of desktop and laptop computers, storage 
of bookmarks and their associated URLs does represent a 

25 significant burden on the limited memory resources of 
wireless client devices. Bandwidth requirements for trans- 
missions over wireless networks is a primary consideration 
for both service provider and user alike. Some of the URLs 
can be rather lengthy, requiring considerable bandwidth and 

30 airtime. 

Thus, there is a need for improved approaches to enable 
a wireless client device to implement bookmarks with 
improved transmission efficiency, less navigation actions 
and/or reduced amounts of memory resources. 

35 

SUMMARY OF THE INVENTION 

Broadly speaking, the invention relates to improved tech- 
niques that enable wireless devices to implement bookmarks 
with improved transmission efficiency, reduced user navi- 
gation and/or reduced amounts of memory resources. One 
aspect of the invention pertains to use of a compact request 
from a wireless device to an intermediate server when 
requesting a document or file by selection of a bookmark. 
Another aspect of the invention is the ability of a user to 

45 select a bookmark to request the associated document or file 
with reduced user interaction (e.g., a single button action). 
Still another aspect of the invention is that memory 
resources of the wireless devices need not be consumed to 
store network addresses (e.g., URLs) for the bookmarks. 

50 These aspects and other aspects described below can be used 
separately or in combination. 

The invention can be implemented in numerous ways, 
including as a method, an apparatus, a system, and a 

55 computer readable medium. Several embodiments of the 
invention are discussed below. 

As a method for requesting a document on a remote server 
using a user interface of a wireless client device, one 
embodiment of the invention includes the operations of 

60 obtaining a compact bookmark identifier for a selected 
bookmarked document, and transmitting a compact request 
including the compact bookmark identifier to a translation 
server. Neither the compact bookmark identifier nor the 
compact request include a universal resource locator for the 

65 selected bookmarked document. 

As a method for utilizing bookmarks on a wireless client 
device, one embodiment of the invention includes the opera- 
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tions of: selecting one of a plurality of bookmarks available including a keypad, a memory, a screen display and a 

to the wireless client device; transmitting a compact request processor. The processor operates to execute computer pro- 

for the document or file represented by the selected book- gram code to generate a compact bookmark when a key on 

mark from the wireless client device to an intermediate the keypad is depressed and held for a predetermined time 

server; obtaining, from the intermediate server, a universal 5 period. The server device provides storage for bookmark 

resource locator for the document or file represented by the information for the wireless client devices. The bookmark 

selected bookmark; preparing a non-compact request for the information is stored associated with user accounts for the 

document or hie represented by the selected bookmark, the wirdess communication devices . Upon receiving a compact 

non-compact request including the universal resource loca- bookmark from one of thc wireIess communication devices, 

tor for the document or hie represented by the selected 1Q ^ duces a { {Q a remQte sefver stQd a 

bookmark; and forwarding the non-compact request for the document or file associated Wlth the compact bookmark, 

document or file represented by the selected bookmark to a whefe the t ^ formed based 0fi the act DOokmark 

remote server identified by at least a portion of the universal and bookmark information. 

resource locator. ^ „ , , nmty . 

a i ac i * ■ i c- c The advantages of the invention are numerous. Different 

As a method of selecting among a plurality of information 1( - . . & . . . 4 . . e 

, . . i- . j • L- * j- i j 35 embodiments or implementations may yield one or more of 

servers by a wireless client device having a display and a 4 , - n , \ „ , , fl , , t . 

, , J ... A £ t . f. . . * t the following advantages. One advantage of the invention is 

keypad, one embodiment of the invention includes the ' , , , , & , f. 4 , , t T t A 

JV ' c ... i i c *' i ,u i i that bookmarks are able to be selected with greater speed 

operations of: providing a dual function key on the keypad , A • . , t c t , . . 

. , ,• . , • iL , i r / i u • and ease. Another advantage of thc invention is that between 

of the winteH client device, the dual function key having a ^ ^ dcvicc * nd an intermediatc xrwt (c . fri 

pnmary function and a secondary function; executing the ~ n x t . r * • j . 

r . J e . , , . c J . . j * i 20 proxy server) a compact request format is used so as to 

pnmary function if the dual function key is pressed for less r , ; 4 . „ 7 , it f . r j . . u * j c 

j , j , • j *u j substantially reduce the amount of data to be transmitted for 

than a predetermined time period; executing the secondary 4 ' . 4 . , , c iL . 4 . ... 

r *• j 1 1 .* i • jr . j a request. Still another advantage of the invention is that 

function if the dual function key is pressed for a time period ^ , A 4l _ . . & .. 4 , . 

, , . ♦ j ** • j ,i memory storage at the wireless client device to support 

greater than or equal to thc predetermined time period, the . , J , . & , , rr 

f ,t jj^i- # • . DOOicmarics is reouceu. 
execution of the secondary function producing a compact 25 

bookmark request; and forwarding the compact bookmark 0ther as P ects and advantages of the invention will 

request to an intermediate server device over a wireless become apparent from the following detailed description 

network using a first communications protocol. The compact taken in conjunction with the accompanying drawings which 

bookmark request is used to access bookmark information illustrate, by way of example, the principles of the invention. 

^iX^iT^Z^^^^ 30 BRIEF DESCRIPTION OF THE DRAWINGS 

couple to the intermediate server device through a wired The present invention will be readily understood by the 

network using a second communications protocol following detailed description in conjunction with the 

As a computer readable medium including computer accompanying drawings, wherein like reference numerals 

program code for requesting a page on a remote server using 35 designate like structural elements, and in which: 

a user interface of a wireless client device, one embodiment FIG. 1 illustrates a schematic configuration in which the 

of the invention includes: computer program code for present invention may be practiced; 

obtaining a compact bookmark identifier for a selected pjc 2 aiustrates a functional block diagram of a wireless 

bookmarked page; computer program code for producing a ^ ^ {q an embodim( ? m of the t 

compact request for the selected bookmarked page, the 40 mvent ; on . 

compact request including the compact bookmark identifier ' 

and not including a universal resource locator for the FIG - 3 illustrates a functional block diagram of a proxy 

selected bookmarked page; and computer program code for server device according to an embodiment of the present 

transmitting a compact request to a translation server. invention; 

As a computer readable medium for utilizing bookmarks 45 FIG * 4 illustrates a "Keypad Bookmark Manager" used to 

on a wireless client device, one embodiment of the invention assign the bookmarks to the keys of the wireless client 

includes: computer program code for selecting one of a device according to one embodiment of the present inven- 

plurality of bookmarks available to the wireless client tlon i 

device; computer program code for transmitting a compact FIG. 5 illustrates the user interface and display of a 

request for the document or file represented by the selected 50 wireless client device according to one embodiment of the 

bookmark from the wireless client device to an intermediate present invention; 

server; computer program code for obtaining, from the FIG. 6 is a flowchart of the bookmark processing accord- 
intermediate server, a universal resource locator for the m g to one embodiment; 

document or file represented by the selected bookmark; F IG. 7 is a flow diagram of client-side request processing 

computer program code for preparing a non-compact request 55 according t0 one embodiment of the invention; 

for the document or file represented by the selected „,„ „ . _ .. 

bookmark, the non-compact request including the universal . * * a flow digram of intermediate request process- 
resource locator for the document or file represented by the in & according to one embodiment of the invention; and 
selected bookmark; and computer program code for for- FIG- 9 is a partial flow diagram of intermediate server 
warding the non-compact request for the document or file 6 o rcs P onse processing according to one embodiment of the 
represented by the selected bookmark to a remote server invention. 

identified by at least a portion of the universal resource r 

locator 7 y DETAILED DESCRIPTION OF THE 

INVENTION 

As a wireless communication system, one embodiment of 

the invention includes a plurality of wireless client devices 65 In the following detailed description of the present 

and a server device coupled to a wireless network servicing invention, numerous specific details are set forth in order to 

the wireless client devices. Each of the wireless devices provide a thorough understanding of the present invention. 
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However, it will become obvious to those skilled in the art 
that the present invention may be practiced without these 
specific details. In other instances, well known methods, 
procedures, components, and circuitry have not been 
described in detail to avoid unnecessarily obscuring aspects 
of the present invention. 

The detailed description of the present invention in the 
following are often presented in terms of procedures, steps, 
logic blocks, processing, and other symbolic representations 
that resemble of data processing devices coupled to net- 
works. These process descriptions and representations are 
the means used by those experienced or skilled in the art to 
most effectively convey the substance of their work to others 
skilled in the art. 

The invention relates to improved techniques that enable 
wireless devices to implement bookmarks with improved 
transmission efficiency, reduced user navigation and/or 
reduced amounts of memory resources. One aspect of the 
invention pertains to use of a compact request from a 
wireless device to an intermediate server when requesting a 
document or file by selection of a bookmark. Another aspect 
of the invention is the ability of a user to select a bookmark 
to request the associated document or file with reduced user 
interaction (e.g., a single button action). Still another aspect 
of the invention is that memory resources of the wireless 
devices need not be consumed to store network addresses 
(e.g., URLs) for the bookmarks. These aspects and other 
aspects described below can be used separately or in com- 
bination. 

Wireless client devices, also referred to as two-way inter- 
active communication or mobile devices, include but are not 
limited to personal digital assistant (PDA) like devices, 
cellular phones, or wireless capable remote controllers. Such 
devices typically have significantly less memory and pro- 
cessing capability than is found in desktop and laptop 
computers. These wireless client devices, which are not a 
combination of a computer and a wireless communications 
module, have a small display screen and a limited keypad as 
opposed to the keyboards associated with desktop comput- 
ers. 

FIG. 1 is a block diagram of an information retrieval 
system according to one embodiment of the invention. The 
information retrieval system allows a plurality of two-way 
wireless interactive communication devices 100 to informa- 
tion from remote information servers. The plurality of 
two-way wireless interactive communication devices 100, 
referred to as wireless client devices or mobile devices 
herein, are serviced by airnet 112. Although only one 
two-way wireless interactive communication devices 100 is 
shown in the FIG. 1, the information retrieval system 
supports many two-way wireless interactive communication 
devices 100. More generally, the airnet 112 is a wireless 
network and can be implemented in a variety of types of 
wireless networks. Examples of commonly used wireless 
networks include Cellular Digital Packet Data (CDPD), 
Global System for Mobile Communications (GSM), Code 
Division Multiple Access (CDMA) and Time Division Mul- 
tiple Access (TDMA), to name a few. 

Also shown in FIG. 1 is landnet 120, which is a landline 
network. More generally, landnet 120 is a wired network. 
For example, landnet 120 may be the Internet, an intranet or 
other data network. Coupled to landnet 120 are a personal 
computer (PC) 128 and an information server device 124. 
Personal computer 128 may be a commonly available laptop 
or desktop computer and run a HyperTexl Markup Language 
(HTML) browser, such as Netscape Navigator from 
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Netscape Communications Corporation 
( www.netscape.comy The HTML browser can communi- 
cate with the information server device 124 via landnet 120 
using HyperText Transfer Protocol (HTTP) to thus access 
information stored in the information server device 124. As 
an example, the information server device 124 is a work- 
station computer such as available from SUN Microsystems 
Inc. (www.sun.com ). The information stored in the infor- 
mation server device 124 may be hypermedia information. 
Although not shown, various other servers or computers are 
connected to landnet 120. 

A proxy server device 116 is coupled between landnet 120 
and airnet 112. The proxy server device 116 is also known 
as a network gateway server. The proxy server device 116 
can be implemented as a workstation computer or a personal 
computer. Often, the communication protocol used in airnet 
112 is different from that used in landnet 120. As a result, 
one of the functions that proxy server device 116 performs 
is to map or translate from one communication protocol to 
another, thereby wireless device 100 coupled to airnet 112 
can communicate with any of the information server devices 
(e.g. information server 124) coupled to landnet 120 via 
proxy server device 116. The proxy server device 116 also 
store or provide access to accounting services, configuration 
management services, and dedicated storage for applications 
and files for user accounts. These applications and services 
may be resident on proxy server device 116 or on a separate 
server device accessible via landnet 120. 

According to one embodiment, the communication pro- 
tocol used by information server device 124 is the well 
known HyperText Transfer Protocol (HTTP) or its secure 
version (HTTPS). HTTP operates on Transmission Control 
Protocol (TCP) and controls the interaction of personal 
computer 128 and information server 124 with landnet 120. 
In such an embodiment, information server 124 operates as 
a HTTP server and personal computer 128 operates a HTML 
browser. 

The communication protocol between wireless client 
device 100 and proxy server device 116 via airnet 112 is, for 
example, Handheld Device Transport Protocol (HDTP) 
(formerly known as Secure Uplink Gateway Protocol 
(SUGP)) or Wireless Access Protocol (WAP). HDTP and 
WAP can run on User Datagram Protocol (UDP). In such an 
embodiment, the interaction between proxy server device 
116 and wireless client device 100 uses HDTP over UDP. 
The wireless client device 100 operates a Handheld Device 
Markup Language (HDML) browser (also known as a 
micro-browser). 

It should be noted that HDTP is a session-level protocol 
that resembles HTTP but without incurring the overhead 
thereof and is highly optimized for use in thin devices, such 
as mobile devices that have significantly less computing 
power and memory than a desktop personal computer. 
Further, it is understood to those skilled in the art that UDP 
does not require a connection to be established between a 
client and a server before information can be exchanged, 
which eliminates the need of exchanging a large number of 
packets during a session creation between a client and a 
server. Exchanging a very small number of packets during a 
transaction is a desired feature for a mobile device with very 
limited computing power and memory to effectively interact 
with a landline device. 

HDML is a tag based document language and comprises 
a set of commands or statements specified in a card that 
specifies how information displayed on a small screen 104 
of the wireless client device KM*. Normally, a number of 
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cards are grouped into a deck that is a unit of HDML According to one embodiment of the invention, wireless 

information exchanged between wireless client device 100 client device 100 and proxy server device 116 together 

and proxy server device 116. The specifications of HDTP, provide bookmark features to the information retrieval sys- 

entitled "HDTP Specification*' and HDML, entitled "HDML tem. A user of the wireless client device is able to utilize the 

2.0 Language Reference" are incorporated herein by refer- 5 bookmark features to gain rapid and easy access to previ- 

ence in their entirety. ously bookmarked locations (e.g., remote information 

The communication protocols (HDTP, HTTP, and servers) or documents thereon. A bookmark is a shortcut 

HTTPs) and the markup languages (HDML and HTML) are feature that allows a user to access a remote location or 

presented for purposes of illustration and not limitation. One document identified by a uniform resource locator (URL) 

skilled in the art will appreciate that the present invention J0 without having to type in the URL. Hence, by selecting a 

can be practiced using other communications protocols (e.g., bookmark, the user directs the wireless client device 100 to 

Wireless Session Protocol (WSP)) and markup languages the remote location or document without having to perform 

(e.g., Compact Hypertext Markup Language (cHTML) and the tedious data entry for the URL. According to the 

Wireless Markup Language (WML). invention, the bookmarks for wireless client device 100 are 

Some of the features in wireless client device 100 that 15 stored in proxy server device 116 (or some other remote 

make the disclosed system work more efficiently are server coupled to landnet) and not normally stored in 

described below. According to one embodiment, wireless wireless client device 100, As a result, the limited memory 

client device 100 includes a display screen 104 and a phone available on wireless client device is not consumed by 

keypad 108 which allow a user thereof to interact with storage of bookmarks and greater numbers of bookmarks 

wireless client device 100. Phone keypad 108 preferably 20 can be supported. Since proxy server device 116 supports a 

provides a typical phone keypad, a pair of generic buttons, large number of subscribers or wireless client devices, the 

and at least a pair navigation buttons. The typical phone bookmarks for each subscriber or wireless client device are 

keypad, as commonly seen, has twelve buttons. Of the stored separately along with other information (e.g., 

twelve buttons, ten buttons are consecutively numbered (0 to account, configuration, and preference information). 

9), one button is designated "*", and the other button is 25 Bookmarks for a subscriber or wireless client device 100 

designated "#". Further, it is to be understood by those of can be entered using personal computer 128 or wireless 

ordinary skill in the art that the present invention may be client device 100. For example, personal computer 128 can 

practiced using various other types of input interfaces and access to proxy server device 116 through the landnet using, 

arrangements (e.g., softkeys, iconic screens). for example, a web browser to edit, create and delete 

Further, there is a working memory (not shown) in 30 bookmarks for the wireless client device 100. Alternatively, 

wireless client device 100. Compiled and linked processes a user of the wireless client device 100 can interact with the 

are typically stored in the working memory as a client keypad 108 and other buttons or input areas to edit, create 

module that causes wireless client device 100 to interact and delete bookmarks for the wireless client device 100. 

with a remote server, such as proxy server device 116. Upon When a bookmark is created it can also be provided with a 

activation of a predetermined key utilizing keypad 108, for 35 shortened name that can be displayed on display screen 104 

example, wireless client device 100 initiates a communica- as needed or requested to remind the user of the previously 

tion session with proxy server device 116 using the client assigned bookmarks. 

module in the working memory. During the communication According to one embodiment of the invention, the book- 
session, the wireless client device 100 requests certain marks arc assigned to particular keys on keypad 108 of 
information (e.g., a document) from information server 124 40 wireless client device 100. A user wishing to access infor- 
or proxy server device 116. In one embodiment, in response mation server 124 (e.g., a document or file on information 
to the request, wireless client device 100 typically receives server 124) from wireless client device 100 using a previ- 
a single HDML deck (from or through proxy server device ously defined bookmark need only press and hold the 
116 and stores (caches) the deck in the working memory. As assigned key. Pressing and holding the assigned key causes 
described above, an HDML deck comprises one or more 45 wireless client device 100 to generate a compact bookmark 
cards and each card includes the information required to identifier which is transmitted to proxy server device 116 in 
generate a screen display on display screen 104. The number a compact request for the bookmarked document (or file), 
of cards in a card deck can be selected to facilitate efficient The proxy server device 116 will intercept the compact 
use of the resources in wireless client device 100 and in request from the wireless client device 116 and convert the 
airnet network 112. 50 compact request into a normal request. Namely, the compact 
As used herein, a display screen is the physical display request using the compact bookmark identifier, whereas the 
apparatus in a wireless client device, such as a 4-line by normal request uses the appropriate URL previously asso- 
20-character Liquid Crystal Display (LCD) screen, A screen ciated with the bookmark. The appropriate URL is stored at 
display is an image presented or displayed on the display proxy server device 116 (or accessible thereto) and is 
screen. Further, it is understood that a display screen having 55 associated with a device identifier associated with wireless 
display lines is only for illustrative purpose and many client device 100 or a subscriber identifier associated with 
display screens in reality are graphics-based and do not the subscriber. 

necessarily have distinct display lines and it will be appre- FIG. 2 is a block diagram of an information retrieval 

ciated that the principles of this invention are equally system according to another embodiment of the invention, 

applicable thereto. 60 The information retrieval system includes wireless client 

Although the information retrieval system illustrated in device 200, personal computer 270, proxy server device 

FIG, 1 includes the proxy server device 116, it should be 254, and information server 280. Proxy server device 254, 

understood that the information retrieval system does not information server 280 and personal computer 270 respec- 

require that a proxy server device be present. Instead, the tively correspond to proxy server device 116, information 

airnet 112 could couple the landnet 120 directly which 65 server 124, and personal computer 128 of FIG. 1. The 

would allow the wireless client device 100 to access infor- wireless client device 200 is, for example, a detailed 

mation servers, such as the information server 124. • embodiment of wireless client device 100. To avoid obscur- 
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ing the principle aspects of the present invention, well In the case where wireless client device 200 uses HDML 

known methods, procedures, components and circuitry in or WML protocols, various operations on wireless client 

wireless client device 200 are not described in detail. device are controlled or provided through card decks. Card 

Wireless client device 200 includes a Wireless Control decks contain one or more cards of HDML or WML 
Protocol (WCP) interface 236 that couples to airnet 250 via 5 documents. For example, an interface card deck can be 
a RF transceiver (not shown) to receive incoming and provided on wireless client device 200 to facilitate a user 
outgoing data signals. Device identifier (ID) storage 208 creating, modifying or deleting bookmarks. According to 
supplies a device ID to WCP interface 236. The device ID one embodiment, the bookmarks are assigned to the keys 
identifies a specific code that is associated with wireless associated with the keypad on wireless client device 200. It 
client device 200 and directly corresponds to the device ID 1Q is important to note that any key on the keypad of wireless 
in a subscriber (user) account provided in proxy server client device 200 can be assigned as a bookmark. When 
device 254. In addition, wireless client device 200 includes bookmarks are created, modified or deleted using wireless 
a client module 212 with an interface engine 216 which client device 200, an interface card deck can control the user 
works in conjunction with processor 204 and working interface provided to the user via the display screen. As 
memory 240 to perform the processing tasks performed by noted above, the bookmarks can also be created, modified or 
wireless client device 200 including establishing a commu- 15 deleted through use of personal computer 270. 
nication session with proxy server device 254 via airnet 250, More particularly, when needed, an interface card deck is 
requesting and receiving data via airnet 250, displaying received by wireless client device 200 and is loaded into 
information on a display screen through the use of display working memory 240. The interface card deck is then 
circuitry 220, and receiving user input from a user via a processed by processor 204 and client module 212 to 
keypad controlled by keypad circuit 224. Additionally, the 20 produce a user interface on the screen display. The interface 
client module 212 operates, among other things, a browser, card deck is comprised of one or more markup language 
commonly referred to as micro-browser, requiring much less entities, which contribute to the functionality of the user 
computing power and memory than well-known HTML interface on wireless client device 200. The functions pro- 
browsers do. The micro-browser is, for example, a HDML vided include: 1) information display; 2) list selection; 3) 
micro-browser available from Unwired Planet, Inc. located 25 input operations; and 4) control functions. These functions 
at 800 Chesapeake Drive, Redwood City, Calif. 94063. will enable the user interface of the wireless client device 
Additional details on accessing a (proxy) server device from 200 to function more efficiently during bookmark creation, 
a wireless client device using a (micro) browser is described modification, and deletion. The interface card deck is navi- 
in U.S. patent application Ser. No. 08/570,210, now U.S. gated using the previously described microbrowser. For 
Pat. No. 5,809,415, which is hereby incorporated by refer- 30 example, the interface card deck can be used to prompt the 
ence in its entirety. user f° r m P ut ( e *S-> "Address for the Site is?", "Name for the 

Wireless client device 200 also includes the voice cir- sitc? "> " Prcss thc Ke y You Want to Assign"), 

cuitry 232 (e.g., a speaker and a microphone) and the Additionally, it will be appreciated by one of ordinary 

associated hardware (e.g., encoder/decoder 228, processor skil1 in lhe art tnat tnis method of bookmark assignment and 

204 and keypad circuitry 224) which allows it to switch to 35 utilization may be practiced using user interfaces other than 

a telephone mode of operation which is separate and distinct keypads (e.g., iconic interfaces, generic buttons, special 

from a network (data) mode of operation used when inter- buttons, soft buttons). Further, although the selection of a 

facing with proxy server device 254 and other devices on previously established bookmark is achieved through a press 

landnet 260. an d n °ld of a pre-assigned key, thc selection of a bookmark 

According to one embodiment of the present invention, a 40 can be achieved in other ways, including a double-click of 

user desiring to obtain information from information server a button > a short sequence of buttons, etc. 

280, places wireless client device 200 in the network mode It should also be noted that an interface card deck can also 

of operation and presses and holds a pre-assigned key on the display a list of bookmarks that have already been assigned, 

keypad of wireless client device 200. The software stored in As an example, the list of bookmarks that have already been 

client module 212 causes the key that was pressed and held 45 assigned can be provided to and displayed by the wireless 

to be recognized in a unique manner than that same key c l ient device b Y pressing and holding a predetermined key 

would be recognized in the telephone mode of operation. (e.g., "0*') on the keypad. A user could then navigate through 

Specifically, instead of generating a alphanumeric character tne list to select a bookmark from the list. This type of 

(e.g. "1"), a compact bookmark identifier is generated. selection, however, does not offer the advantages of minimal 

Wireless client device 200 establishes a connection with 50 user actions to obtain a selection as does the simple selection 

proxy server device 254 via airnet 250 and transmits a °f a pre-assigned button. 

compact request for the document identified by the compact FIG. 3 is a detailed block diagram of a proxy server device 

bookmark identifier. The compact bookmark identifier is 300 according to one embodiment of the invention. Proxy 

used to access previously stored bookmark information on server device 300 comprises a server module 308 coupled 

proxy server device 254. Using the stored bookmark 55 between LCP interface 348 and WCP interface 304. Server 

information, proxy server device 254 generates a normal module 308, which is typically loaded in memory, performs 

request for the document originally identified by the com- traditional server processing as well as protocol conversion 

pact bookmark identifier. The normal request is then for- processing from one communication protocol to another 

warded over landnet 260 to information server 280 (where communication protocol. More particularly, server module 

the requested documents resides). One of ordinary skill in 60 308 is coupled to a landnet 352, which uses a first commu- 

the art will appreciate that if wireless client device 200 is in nication protocol (e.g., Hypertext Transfer protocol (HTTP) 

a non-network mode (e.g., telephone mode) of operation or Secure Hypertext Transfer Protocol (HTTPS)), and to an 

then software within wireless client device 200 can cause airnet 310 which uses a second communication protocol 

wireless client device 200 to be placed in the network mode (e.g., Handheld Device Transport Protocol (HDTP) or Wirc- 

of operation upon detecting that a pre-assigned key has been 65 less Access Protocol (WAP)). 

press and held so as to select a previously assigned book- It is understood to those skilled in the art that a server 

mark. device used herein, which may perform as proxy server 
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device 254 and be coupled to landnet 260, refers to a piece 
of hardware equipment that comprises one or more 
microprocessors, working memory, buses and necessary 
interfaces and other components. One the other hand a 
server module refers to compiled and Linked processes of the 
disclosed system loaded into the working memory to per- 
form designated functions through the parts and components 
in the server device. 

Server module 308 comprises a control engine 312, a 
message processor 324, an account manager 316, and an 
account interface 320. Control engine 312 interacts with the 
client module of wireless client device (not shown) through 
airnet 310 and coordinates the reception of requests. Mes- 
sage processor 324 receives messages from landnet 352 and 
performs a series of processing and management activities. 
The processing performed by message processor 324 
includes protocol conversion between the different protocols 
used on airnet 310 and landnet 352. 

Account manager 316 manages through account interface 
320 a number of subscriber (user) accounts for all the 
wireless client devices serviced by proxy server device 300. 
Each of the wireless client devices serviced by proxy server 
device 300 is assigned a device identifier (ID). Device ID 
can be a phone number of the device or an IP address or a 
combination of an IP address and a port number, for 
example: 204.163.165.132:01905 where 204.163.165.132 is 
the IP address and 01905 is the port number. The device ID 
is further associated with a subscriber ID created and admin- 
istrated by a carrier and stored in proxy server device 300 as 
part of the procedures to activate a subscriber account for a 
wireless client device. The subscriber ID may take the form 
of, for example, 861234567-10900_pn.mobile.att.net by 
AT&T Wireless Service, and is a unique identification to a 
wireless client device. 

Upon receiving a compact request having a compact 
bookmark identifier for a previously assigned bookmark, 
proxy server device 300 accesses the subscriber account 
(corresponding to the subscriber identification number of the 
wireless client device that sent the compact bookmark 
identifier) contained within proxy server device 300 or in a 
remote server accessed via landnet 352. The subscriber 
account contains bookmark information that has been pre- 
viously stored. The bookmark information includes a Uni- 
form Resource Locator (URL) for the selected bookmark 
being identified by the compact bookmark identifier. The 
bookmark information can also include a short name for the 
bookmark. Proxy server device 300 can also forward a 
wireless client device a interface card deck for a menu list 
of previously assigned keys that can be displayed on the 
display screen of the requesting wireless client device so that 
a user can determine which keys are assigned to which 
bookmarks. In such case, the short names serve to inform the 
user of the location or document of the bookmark. One 
example of a short name is "Acme" for the full name "Acme 
Corporation — Home Page". Such short names are more 
likely able to fit on the limited size screen display and more 
likely to be more descriptive of the bookmark. 

FIG. 4 is an exemplary screen shot 400 for a Keypad 
Bookmark Manager according to one embodiment of the 
invention. A user wishing to create, modify or delete book- 
marks for a wireless client device (e.g., wireless client 
device 100 of FIG. 1) can access Keypad Bookmark Man- 
ager using a computer (e.g., computer 128 of FIG. 1) with 
network connectivity (e.g., the Internet) and a web browser 
(e.g., Netscape Navigator). Each user or subscriber to wire- 
less network service can be given a personal home page 
which they can visit to access Keyboard Bookmark Man- 
ager. 
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In the screen shot 400 for Keypad Bookmark Manager an 
iconic symbol 404 representing a "0" key shows that this key 
has been previously assigned to a location (e.g., document or 
web page address) having a specific URL 412. The specific 

5 URL in this example is: http):// 
www.uplanet.bookmarks.smethcrs.com. The short name for 
the bookmark assigned to the "0" key is "Keypad Menu" as 
shown in field 408. In this example, the fields in 408 and 412 
are pre-set and are not normally able to be modified. The 

50 other fields displayed in the screen shot 400 of Keypad 
Bookmark Manager may be assigned by the user. The screen 
shot 400 shows that bookmarks for keys "1", "2" and "3" 
have been assigned by the user, and that key "4" is as yet 
unassigned. With respect to key "1", the screen shot 400 

35 show that the bookmark has a short name of 'My Stocks" in 
field 420 .and a URL of "http://www.uplanet.com/ 
stocks. html/" in filed 424. Keys "2" and "3" are also shown 
in the screen shot 400 has having been assigned in accor- 
dance with information in fields 436, 440, 452 and 456. 

20 When a user first enters a bookmark or modifies a bookmark, 
the entry is registered by activating the "SUBMIT" button 
associated with the assigned key (see iconic buttons 428, 
444, 460 and 476). For example, upon entering a bookmark 
assignment for the "2" key "SUBMIT" button 444 would be 

25 pressed. Fields 468 and 472 for the "4" key are current 
unassigned and available to store the user's next bookmark. 
Although only numbered keys have been described in this 
example, it would be apparent to one of ordinary skill in the 
art that any key on the keypad or other button or input 

30 selection mechanism of the subject wireless client device 
may be similarly assigned. 

FIG. 5 is an exemplary wireless client device 500 for use 
with the invention. Once the bookmarks for wireless client 
device 500 have been assigned, pressing and holding an 

35 assigned key while the device is in the network (data) mode 
of operation will cause a compact request including the 
compact bookmark identifier to be obtained and forwarded 
to the associated proxy server device. For example, pressing 
and holding the "0" key will cause the compact bookmark 

40 identifier for that key to be generated and forwarded to the 
proxy server device in a compact request. The compact 
bookmark identifier is preferably two bytes in size. For 
example, the compact bookmark identifier can be two 
characters, a control character indicating a bookmark and a 

45 number for the particular bookmark. In the case of the "0" 
key and the assignments shown in FIG. 4, the proxy server 
device retrieves the bookmark associated with the "0" key 
(i.e., http://www.uplanet.bookmarks.com/smethers.html and 
forwards a request for the page identified by the retrieved 

50 URL. The information server containing that document 
responds to the request and forwards the requested docu- 
ment or file to the wireless client device. In this example, the 
retrieved URL happens to address a HDML file residing on 
the proxy server device. This HDML file contains a listing 

55 the assigned keys to bookmarks and the associated short 
names that can be displayed on the screen display. Often, 
however, the URLs address documents or files on an infor- 
mation server located anywhere on the landnet. The wireless 
client device thereafter receives the requested document or 

60 file and displays information on the display screen 504. 
FIGS. 6 is a flowchart illustrating bookmark selection and 
processing 600 according to one embodiment of the present 
invention. The processing 600 begins at block 604 where a 
key press on a keypad is received. At block 608, a deter- 

65 minalion is made as to whether or not the pressed key is a 
press and hold key. Here, in this embodiment, press and hold 
keys are those keys that are eligible for press and hold 
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entries. The press and hold are those keys that are eligible to decision block determines whether a response has been 
be assigned to a bookmark. If the pressed key is not a press received. Once a response has been received, the response 
and hold key, then the pressed key will be processed as a includes the selected bookmarked document that was pre- 
normal input from an alpha-numeric numeric or function viously requested. Hence, at block 710, the selected book- 
key at block 612. On the other hand, if the pressed key is a 5 mar ked document causes information to be displayed on a 
press and hold key, then a determination is made as to screen display of the wireless client device. Following block 
whether the press key has also been held at block 616. If the 710 the client-side request processing 700 is complete and 
pressed key is determined not to have been held, then the enc j s 
processing 600 also performs block 612. If, on the other _ ' 

hand, the pressed key was held, then the pressed key is n FIG - 8 15 a flow dia S ram of intermediate request process- 
processed as a bookmark at block 620. In one embodiment, 10 in S 800 according to one embodiment of the invention. The 
the pressed key is determined to be held is the key was intermediate request processing 800 is, for example, per- 
pressed and held for a predetermined time period (e.g., 2 formed b y the P rox y server device 116 illustrated in FIG. 1. 
seconds). Hence, if the pressed key was pressed and released Alternatively, the intermediate request processing can be 
before the predetermined time period had expired, the performed by any other remote server coupled to the la ndnet 
pressed key is processed as a normal input from a alphami- 35 (including the translation server of FIG. 7). 
meric or function key at block 612. At block 620, a book- The intermediate request processing 800 begins with a 
mark request and a compact bookmark identifier will be decision block 802 that determines whether a compact 
generated and forwarded to the proxy server device storing request has been received from a wireless client device. In 
the user's bookmark information. The proxy server device other words, the intermediate request processing 800 is 
will use the compact bookmark identifier to retrieve the 20 activated or begins when a compact request has been 
associated URL with the bookmark at block 624. Then, a received from the wireless client device through the airnet. 
request will be generated and forwarded by the proxy server The compact nature of the compact request means that its 
device to the information server identified by the URL at size in terms of number of bytes is limited so that minimal 
block 628. Following block 628, as well as following block bandwidth is consumed or needed and rapid transmission 
612, the processing 600 is complete and ends. 25 through the airnet 112 can be obtained. Once the decision 

FIG. 7 is a flow diagram of client-side request processing Mock 802 determines that a compact request has been 

700 according to one embodiment of the invention. The received, the compact bookmark identifier is extracted from 

client-side request processing 700 is, for example, per- the compact request at block 804. The compact bookmark 

formed by the client module 212 of the wireless client device identifier is embedded within the compact request, typically 

200 illustrated in FIG. 2. as a fi^d within the compact request. Hence, block 804 

The client-side request processing 700 begins with a operates to parse the compact request to obtain the compact 

decision block 702 that determines whether the user has bookmark identifier. 

requested a bookmarked document. Here, the client-side Next, a URL associated with the compact bookmark 

request processing 700 is essentially initiated when a user 35 identifier is obtained at block 806. Here, for example, the 

interacts with the wireless client device to select a book- remote server (translation server) stores a table for each 

marked document that is to be requested. A user can request subscriber supported by the aimet system. These tables store 

a bookmarked document in a variety of ways. In one the URLs as associated with the subscriber's bookmarks as 

embodiment, a bookmarked document is requested by the utilized on their wireless client devices. Upon receiving the 

press and hold of a pre -assigned key of the wireless client 40 compact request, a device identifier is obtained from the 

device. incoming compact request and used to obtain a subscriber 

Once the decision block 702 has determined that the user ID which, in turn, identifies the table associated with the 

has requested a bookmarked document, a compact book- subscriber. Then, the compact bookmark identifier can be 

mark identifier is obtained at block 704. The compact used to look-up within the table the appropriate URL 

bookmark identifier is a short identifier of at most a few 45 (address) for the requested bookmarked document. Then, a 

bytes that identifies the particular bookmark that has been standard request (i.e., no longer compact in nature) is 

selected by the user. For example, for the wireless client prepared for the selected bookmarked document at block 

device 500 illustrated in FIG. 5, the telephone keypad 516 808 - T*m standard request will, among other things, contain 

includes at least twelve buttons, namely buttons labeled 0-9, the obtained URL, the device identifier (ID), the destination 

* and #. Each one of these at least twelve buttons can operate 50 address and the source address. Here, the remote server 

as a bookmark. As an example, when the user depresses operates to form a traditional request using the URL that has 

button labeled "1", a first bookmark is selected and the been obtained from the table associated with the subscriber, 

compact bookmark identifier can be "&1", For such a After the request is prepared, the request is transmitted to 

compact bookmark identifier, only two bytes are need to an information server at block 810. However, in the case in 

identify the bookmark, a single bite for a bookmark control 55 which the intermediate request processing 800 is performed 

signal ("&") and another byte for a numeric value of the at the information server that is the destination for the 

bookmark identifier ("1")- requested bookmarked document, then block 810 may not 

Next, a compact request is transmitted to a translation be required. Following block 810, the intermediate request 

server. The compact request is a request for the bookmarked processing 800 is complete and ends, 

document that is sent to the translation server. However, the 60 FIG. 9 is a partial flow diagram of intermediate server 

compact request is constructed such that to identify the response processing 900 according to one embodiment of 

bookmarked document, the compact bookmark identifier is the invention. Often, the intermediate server will act as a 

contained within the compact request. The compact request network gateway or a proxy server for the wireless client 

will also, among other things, contain a device identifier device. Hence, in such cases, the response to the request that 

(ID), a destination address and a source address. 65 is transmitted to the information server (block 810) is 

At this point, the wireless client device is awaiting a returned to the wireless client device through the interme- 

response from the translation server. Hence, at block 708, a diate server. Hence, the intermediate server response pro- 
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cessing 900 explains the return of the response from the 
information server through the intermediate server to the 
wireless client device. Namely, a decision block 902 deter- 
mines whether the response has been received. If the 
response has not yet been received, the intermediate server 5 
response processing 900 is effectively waiting to receive the 
response. Once the response has been received, the inter- 
mediate server performs protocol conversion at block 904. 
For example, the protocol conversion can be from HTML to 
HDML. Then, the response is forwarded to the wireless 
client device at block 906. The response being forwarded to 
the wireless client device includes the selected bookmarked 
document that was originally requested by the wireless 
client device using the selection of a previously defined 
bookmark. Following block 906, the intermediate server 
response processing 900 is complete and ends. 15 

The invention can also be embodied as computer readable 
code on a computer readable medium. The computer read- 
able medium is any data storage device that can store data 
which can be thereafter be read by a computer system. 
Examples of the computer readable medium include read- 20 
only memory, random-access memory, CD-ROMs, mag- 
netic tape, optical data storage devices. The computer read- 
able medium can also be distributed over a network coupled 
computer systems so that the computer readable code is 
stored and executed in a distributed fashion. 2 5 

It can be appreciated by now that the present invention 
provides an efficient means for users of wireless client 
devices to navigate information services over a network 
using bookmarks stored on a remote server. This invention 
allows users to navigate such information services with a 30 
minimal amount of input interaction (i.e., key strokes) and 
with efficient use of the wireless client devices bandwidth. 

The advantages of the invention are numerous. Different 
embodiments or implementations may yield one or more of 
the following advantages. One advantage of the invention is 35 
that bookmarks are able to be selected with greater speed 
and ease. Another advantage of the invention is that between 
the wireless client device and an intermediate server (e.g., 
proxy server) a compact request format is used so as to 
substantially reduce the amount of data to be traasmitted for 4Q 
a request. Still another advantage of the invention is that 
memory storage at the wireless client device to support 
bookmarks is reduced. 

The present invention has been described in sufficient 
detail with a certain degree of particularity. It is understood 45 
to those skilled in the art that the present disclosure of 
embodiments has been made by way of example only and 
that numerous changes in the arrangement and combination 
of parts as well as operations may be resorted without 
departing from the spirit and scope of the invention as 50 
claimed. Accordingly, the scope of the present invention is 
defined by the appended claims rather than the forgoing 
description of embodiments. 

What is claimed is: 

1. A method for requesting a document on a remote server 55 
using a user interface of a wireless client device, the method 
comprising: 

obtaining a compact bookmark identifier for a selected 
bookmarked document without keying in the compact 
bookmark identifier at the wireless client device when 60 
initiating a request for the selected bookmarked docu- 
ment; and 

transmitting a compact request including the compact 
bookmark identifier to a translation server, 

wherein the selected bookmarked document is chosen by 65 
a selection of a single button on the wireless client 
device, and 
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wherein neither the compact bookmark identifier nor the 
compact request include a universal resource locator 
for the selected bookmarked document. 

2. A method as recited in claim 1, wherein the selected 
bookmarked document is a web page. 

3. A method as recited in claim 1, wherein the translation 
server is a proxy server. 

4. A method as recited in claim 3, wherein the selection of 
the button is determined by depressing the button and 
holding the button depressed for at least a predetermined 
period of time. 

5. A method as recited in claim 1, wherein the wireless 
client device includes a screen display, 

wherein the selected bookmarked document is further 
chosen without needing to first display a list of avail- 
able bookmarks on the screen display of the wireless 
client device. 

6. A method for utilizing bookmarks on a wireless client 
device, the method comprising: 

selecting one of a plurality of bookmarks available to the 

wireless client device by selection of a single button on 

the wireless client device; 
transmitting a compact request for the document or file 

represented by the selected bookmark from the wireless 

client device to an intermediate server; 
obtaining, from the intermediate server, a universal 

resource locator for the document or file represented by 

the selected bookmark; 
preparing a non-compact request for the document or file 

represented by the selected bookmark, the non-compact 

request including the universal resource locator for the 

document or file represented by the selected bookmark; 

and 

forwarding the non-compact request for the document or 
file represented by the selected bookmark to a remote 
server identified by at least a portion o the universal 
resource locator. 

7. A method as recited in claim 6, wherein the document 
or file represented by the selected bookmark is a web page. 

8. A method as recited in claim 7, wherein the interme- 
diate server is a proxy server. 

9. A method as recited in claim 6, wherein the selection of 
the button is determined by depressing the button and 
holding the button depressed for at least a predetermined 
period of time. 

10. A method as recited in claim 9, wherein the wireless 
client device includes a screen display, 

wherein the selecting one of the plurality of bookmarks 
available to the wireless client device is performed by 
selection of a button on the wireless client device 
without needing to first display a list of available 
bookmarks on the screen display of the wireless client 
device. 

11. A method as recited in claim 6, wherein the compact 
request being transmitted from the wireless client device to 
an intermediate server does not include the universal 
resource locator for the selected bookmark. 

12. A method as recited in claim 6, wherein the obtaining 
of the universal resource locator comprises: 

obtaining an identifier for the wireless client device or its 
subscriber from the compact request; and 

locating bookmark information associated with the iden- 
tifier at the intermediate server; and 

retrieving, from the bookmark information, the universal 
resource locator for the document or file represented by 
the selected bookmark. 
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13. A method as recited in claim 12, wherein the selecting 
one of the plurality of bookmarks available to the wireless 
client device is performed by selection of a single button on 
the wireless client device. 

14. A method as recited in claim 13, wherein the selection 
of the button is determined by depressing the button and 
holding the button depressed for at least a predetermined 
period of time. 

15. In a wireless client device having a display and a 
keypad, a method of selecting among a' plurality of infor- 
mation servers, the method comprising: 

providing a dual function key on the keypad of the 
wireless client device, the dual function key having a 
primary function and a secondary function; 

executing the primary function if the dual function key is 
pressed for less than a predetermined time period; 

executing the secondary function if the dual function key 
is pressed for a time period greater than or equal to the 
predetermined time period, the execution of the sec- 
ondary function producing a compact bookmark 
request; and 

forwarding the compact bookmark request to an interme- 
diate server device over a wireless network using a first 
communications protocol, 

wherein the compact bookmark request is used to access 
bookmark information available to the intermediate 
server device to produce a request to one of the 
plurality of information servers that couple to the 
intermediate server device through a wired network 
using a second communications protocol, and 

wherein said executing of the secondary function and said 
forwarding of the compact bookmark request are per- 
formed in response to a single press of the dual function 
key. 

16. A method as recited in claim 15, wherein the first 
communications protocol for the wireless network is a 
wireless communications protocol and the second commu- 
nications protocol for the wired network is Hypertext Trans- 
port Protocol (HTTP) over Internet Protocol (TCP/IP). 40 

17. A method as recited in claim 15, wherein the wireless 
client device is selected from a group consisting of mobile 
telephones, pagers and Personal Digital Assistants having 
screen displays. 

18. A computer readable medium including computer 45 
program code for requesting a page on a remote server using 

a user interface of a wireless client device, the computer 
readable medium comprising: 

computer program code for obtaining a compact book- 
mark identifier for a selected bookmarked page without 
the user keying in the compact bookmark identifier at 
the wireless client device when initiating a request for 
the selected bookmarked document; 

computer program code for detecting selection of a single 
button on the wireless client device, thereby selecting 
the selected bookmarked document; 

computer program code for producing a compact request 
for the selected bookmarked page, the compact request 
including the compact bookmark identifier and not 
including a universal resource locator for the selected 
bookmarked page; and 

computer program code for transmitting a compact 
request to a translation server. 

19. A computer readable medium as recited in claim 18, 
wherein the computer program code for detecting selection 
of the button operates to determine when a button on the 
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wireless client device has been depressed and held depressed 
for at least a predetermined period of time. 

20. A computer readable medium as recited in claim 19, 
wherein the translation server is a proxy server. 

21. A computer readable medium including computer 
program code for utilizing bookmarks on a wireless client 
device, the computer readable medium comprising: 

computer program code for selecting one of a plurality of 
bookmarks available to the wireless client device by 
selection of a single button on the wireless client 
device; 

computer program code for transmitting a compact 
request for the document or file represented by the 
selected bookmark from the Wireless client device to 
an intermediate server; 

computer program code for obtaining, from the interme- 
diate server, a universal resource locator for the docu- 
ment or file represented by the selected bookmark; 

computer program code for preparing a non-compact 
request for the document or file represented by the 
selected bookmark, the non-compact request including 
the universal resource locator for the document or file 
represented by the selected bookmark; and 

computer program code for forwarding the non-compact 
request for the document or file represented by the 
selected bookmark to a remote server identified by at 
least a portion of the universal resource locator. 

22. A computer readable medium as recited in claim 21, 
wherein the document or file represented by the selected 
bookmark is a web page, 

23. A computer readable medium as recited in claim 21, 
wherein the intermediate server is a proxy server. 

24. A computer readable medium as recited in claim 21, 
wherein the computer program code for selecting to detect 
the selection of the button by determining whether the 
button has been depressed and held depressed for at least a 
predetermined period of time. 

25. A computer readable medium as recited in claim 24, 
wherein the wireless client device includes a screen display, 

wherein the computer program code for selecting one of 
the plurality of bookmarks available to the wireless 
client device is performed by detecting a selection of 
the button on the wireless client device without needing 
to first display a list of available bookmarks on the 
screen display of the wireless client device. 

26. A computer readable medium as recited in claim 21, 
wherein the compact request being transmitted from the 
wireless client device to an intermediate server does not 
include the universal resource locator for the selected book- 
mark. 

27. A computer readable medium as recited in claim 21, 
wherein the computer readable medium for obtaining of the 
universal resource locator comprises: 

computer program code for obtaining an identifier for the 
wireless client device or its subscriber from the com- 
pact request; 

computer program code for locating bookmark informa- 
tion associated with the identifier at the intermediate 
server; and 

computer program code for retrieving, from the bookmark 
information, the universal resource locator for the 
document or file represented by the selected bookmark. 

28. A computer readable medium as recited in claim 27, 
wherein the computer program code for selecting one of the 
plurality of bookmarks available to the wireless client device 
operates to detect selection of a button on the wireless client 
device. 



04/05/2004, EAST Version: 1.4.1 



US 6,560, 

19 

29. A computer readable medium as recited in claim 28, 
wherein the computer program code for selecting to detect 
the selection of the button by determining whether the 
button has been depressed and held depressed for at least a 
predetermined period of time. s 

30. A wireless communication system, the system com- 
prising: 

a plurality of wireless client devices, each of the wireless 
devices including a keypad, a memory, a screen display 
and a processor, the processor operates to execute 10 
computer program code to generate a compact book- 
mark when a single key on the keypad is depressed and 
held for a predetermined time period; and 

a server device coupled to a wireless network servicing 
the wireless client devices, the server device provides 15 
storage for bookmark information for the wireless 
client devices, the bookmark information being stored 
associated with user accounts for the wireless commu- 
nication devices, upon receiving a compact bookmark 
from one of the wireless communication devices the 20 
server produces a request to a remote server storing a 
document or file associated with the compact 
bookmark, the request being formed based on the 
compact bookmark and bookmark information. 



640 B2 

20 

31. A system as recited in claim 30, 

wherein the server device is a proxy server device that 
couples between a wired data network and a wireless 
data network, and 

wherein the wireless data network is capable of coupling 
to the wireless communication devices to facilitate 
communications between the proxy server and the 
wireless communication devices. 

32. A system as recited in claim 31, wherein the wired 
data network uses a first communications protocol and the 
wireless data network uses a second communications pro- 
tocol that differs from the first communication protocol. 

33. A system as recited in claim 32, wherein the first 
communications protocol for the wireless data network is a 
wireless communications protocol and the second commu- 
nications protocol for the wired data network is Hypertext 
Transport Protocol (HTTP) over Internet Protocol (TCP/IP). 

34. A system as recited in claim 33, wherein the wireless 
communications protocol is selected from a group consisting 
of Wireless Application Protocol (WAP) and Handheld 
Device Transport Protocol (HDTP). 

.♦**** 
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ABSTRACT 



For use with a network having server sites capable of being 
browsed by users based on identifiers received into the 
server sites and personal to the users, alternative proxy 
systems for providing substitute identifiers to the server sites 
that allow the users to browse the server sites anonymously 
via the proxy system. A central proxy system includes 
computer-executable routines that process site-specific sub- 
stitute identifiers constructed from data specific to the users, 
that transmits the substitute identifiers to the server sites, that 
retransmits browsing commands received from the users to 
the server sites, and that removes portions of the browsing 
commands that would identify the users to the server sites. 
'ITie foregoing functionality is performed consistently by the 
central proxy system during subsequent visits to a given 
server site as the same site specific substitute identifiers are 
reused. Consistent use of the site specific substitute identi- 
fiers enables the server site to recognize a returning user and, 
possibly, provide personalized service. 
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What's New? I What's Cool? Destinations Net Search | People | [Software 



Welcome to Janus! 



Janus is a system for personalized anonymous Web access. 

Janus generates consistent untraceable aliases for you from the 
information you provide in this page. Janus neither stores this 
information nor passes it to any server. Consequentially, Janus does 
not authenticate you. You must provide the same information in future 
sessions to generate the same aliases. 

You will see this form only once at the beginning of the session. You 
cannot change the input to Janus during the rest of your session, 
unless Janus detects that it fails to authenticate you. 

The pair <user name, alias-seed> should be unique among all Janus users. You can use your 
E-mail address as your name to reduce chance of collision with other users. Janus will not pass 
your name to any server. Maximal size for user name and seeds is 1000 characters each. 

Enter your user name (use your E-mail address): 



Enter your secret (must contain at least 8 characters): 



Verify your secret by typing it again: 
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I submit! 1 Reset! 



Click here for more information about Janus. 
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Registration 

Welcome to The New York Tribune on the Web. If you're visiting us 
for the first time, please register now by filling out the form below. 
There is currently no charge for U.S. residents to subscribe to our 
site, but we are requiring registration, which is a one-time only 
process. 

If you have already registered, continue to the tome pag e. If 
you've registered, out are having problems entering the site, 
consult our help section . 

Choose a Subscriber ID for The New York Tribune on the 
Web: 
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Choose a password: 



Mimimum Eve characters 
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Re-enter password for confirmation: 
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Enter your e-mail address: 
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SYSTEM AND METHOD FOR PROVIDING 
ANONYMOUS PERSONALIZED BROWSING 
BY A PROXY SYSTEM IN A NETWORK 

TECHNICAL FIELD OF THE INVENTION 

The present invention is directed, in general, to networks 
and, more specifically, to a system and method that allows 
a user to browse personalized server resources on a network 
anonymously. 

BACKGROUND OF THE INVENTION 

The Internet is a well-known collection of networks (e.g., 
public and private data communication and multimedia 
networks) that work together (cooperate) using common 
protocols to form a world wide network of networks. 

In recent years, the availability of more efficient, reliable 
and cost-effective computers and networking tools have 
allowed many companies and individuals (collectively, 
"users") to become involved in an ever growing electronic 
marketplace. The immeasurable gains in technology expe- 
rienced by the computer industry overall have allowed these 
users to rely on commercially available computers, such as 
personal computers ("PCS"), to meet their information pro- 
cessing and communication needs. To that end, PC manu- 
facturers equip most PCS with an interface that may be used 
for communication over networks, such as the Internet. 

The Internet continues to increase its position as an 
integral place for businesses that offers information and 
services to potential customers. Popular examples of such 
businesses are news providers (e.g., www.cnn.com (the 
Cable News Network), www.nytimes.com (the New York 
Times), www.wsj.com (the Wall Street Journal), www.ft- 
.com (Financial Times Magazine), www.businessweek.com 
(Business Week Magazine)); car manufacturers (e.g., 
www.ford.com/us (the Ford Motor Company), www.gm- 
,com (the General Motor Company), www.toyota.com (the 
Toyota Motor Company)); book stores (e.g., www.amazon- 
.com (Amazon.com books)); software providers (e.g., www- 
.microsoft.com (the Microsoft software company)) and 
many more. 

Most often, such a business sets up a home page on the 
World Wide Web (a "web-site," the World wide Web is a 
logical overlay of the Internet). The web-site constitutes an 
electronically-addressable location that may be used for 
promoting, advertising and conducting business. Potential 
electronic customers use web-browsers (e.g., NETSCAPE 
NAVIGATOR®, MICROSOFT EXPLORER®, etc.) to 
access the information offered on those web-sites. 

An increasing number of web sites offer personalized 
services that may include "personalized web pages" cus- 
tomized to a user's interests, with hyper- links (a reference or 
link from some point in one hypertext document to some 
point in another document or another place in the same 
document — often displayed in some distinguishing way 
(e.g., in a different color, font or style)) and displayed 
messages tailored according to the user's preferences. Such 
preferences can be ascertained by having a user establish an 
account with that web-site. This allows the web-site to store 
information about the user's previous visits, either by track- 
ing the hyper-links the user followed or through explicit 
dialogs with the user. For example, the Wall Street Journal 
provides a "personalized journal" to each user, where the 
sequence and selection of sections is customized. In order to 
open an account, the user typically has to complete a form 
electronically, providing a user name, a password, an 
electronic-mail ("e-mail") address, etc. The latter is often 
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used by the web-site to send back information not provided 
on the web-site itself to the user. 

Given the inherent lack of privacy of electronic commu- 
nication over the Internet generally, and, particularly, the 

5 World Wide Web, it has long been felt that a system that 
could ensure private electronic communication would be 
highly advantageous. As an example of the problem, con- 
sider the plight of a customer that would like to browse the 
World Wide Web in a safe and private (anonymous) manner, 

10 visiting sites that provide personalized service. The cus- 
tomer would like to establish accounts on web-sites without 
revealing his true identity, and without reusing the same user 
names, passwords, for multiple sites. Customers should 
refrain from reusing the same user names and passwords at 

15 multiple sites to avoid a security breach at one site to affect 
other sites; additionally refraining from using such user 
names and passwords limits the ability of multiple sites from 
colluding to combine customer information and build dos- 
siers on particular customers. 

20 Typically, the customer visits many of these web-sites, 
and inventing and remembering new user names and pass- 
words for each web-site becomes tedious. Moreover, many 
of these web-sites require the customer to include his e-mail 
address with his user name and password — by providing his 

25 e-mail address, the customer reveals his identity. 

In addition, there are commercial products available that 
allow web-sites to track their clients and visitors. Such 
tracking can be made even when no voluntary information 

3Q is provided by the user and no form is filled out. Examples 
of such systems are "Webreporter " which is available from 
OPENMARKET, INC., and "SiteTrack," which is available 
from GROUP CORTEX, whose advertisement reads as 
follows: 

35 "Identify who is visiting your site. Record the actual 
number of people that visit. Find which links they 
follow and trace their complete path. Learn which site 
users came from and which site they depart to ... " 
These products are made possible because the hypertext 

40 transport protocol ("HTTP-protocol"), on which the World 
Wide Web is largely based, allows specific information to 
flow back from the user to the web-site. This can include for 
example, the user's e-mail address, the last web-site he came 
from, and information about the user's software and host- 

45 computer. Other pertinent user information may be sent by 
the web-site to the user browser using what are commonly 
referred to as "cookies" (pieces of information that web-sites 
may store at the user's browser). On subsequent visits to the 
web-site, the user's browser sends back information to the 

50 web-site without the user's knowledge. 

From the foregoing, it is apparent that what is needed in 
the art is a scheme that provides anonymous personalized 
web browsing that satisfies two seemingly conflicting 
objectives, namely, providing user privacy and user identi- 

55 fication. 

SUMMARY OF TOE INVENTION 

To address the above-discussed deficiencies of the prior 
art, the present invention introduces a proxy system that 

60 performs two basic functions: (1) automatic substitution of 
user-specific identifiers such that server sites (e.g., web sites, 
junction points, intelligent portal devices, routers, network 
servers, etc.) within a network are prevented from determin- 
ing the true identity of the user browsing (accessing, 

65 locating, retrieving, reading, contacting, etc.) the sites; and 
(2) automatic stripping of any other information associated 
with browsing commands that would allow the server sites 
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to determine the true identity of the user browsing the server and use the same (site-specific) substitute identifiers, 

sites. An important aspect of the present invention is that the Typically, the proxy system functions as a conduit commu- 

foregoing functions are performed consistently by the proxy nicating messages between the user and the server Depend- 

system during subsequent visits to the server site (the same ing upon the embodiment, the proxy system may remove or 

substitute identifiers are used on repeat visits to the server 5 substitute some portion of messages communicated by the 

site; the server site also cannot distinguish between infor- user to the server to ensure anonymity, 

mation supplied by the user and the proxy system, thus the An alternative advantageous embodiment of the present 

proxy system is transparent to the server site). The present invention may be provided in the form of a peripheral proxy 

invention therefore not only introduces anonymous system designed for use with a network having a server site 

browsing, but also personalization based upon the consistent 10 capable of being browsed by users based on identifiers 

use of substitute identifiers. received into the server site and personal to the users. The 

It should be noted that the term "true," as used herein, peripheral proxy system includes: (1) a computer-executable 

means accurate, actual, authentic, at least partially correct, first routine that constructs a particular substitute identifier 

genuine, real or the like, the term "or," as used herein, is from data received from a particular user and (2) a 

inclusive, meaning and/or; and the phrase "associated with" 15 computer-executable second routine that transmits the par- 

and derivatives thereof, as used herein, may mean to include ticular substitute identifier to the central proxy system, the 

within, interconnect with, contain, be contained within, central proxy system retransmitting the particular substitute 

connect to or with, couple to or with, be communicable with, identifier to the server site and thereafter retransmitting 

juxtapose, cooperate with, interleave, be a property of, be browsing commands received from the particular user to the 

bound to or with, have, have a property of, or the like. 20 server site. According to this embodiment, the first routine 

As is described in greater detail hereinbelow, the prin- mav be associated, at least in part, with the user site, which 

ciples of the present invention address the conflicting objec- distributes the basic functions of the present invention over 

tives of user privacy and user identification described here- multiple computer systems. 

inabove by providing a proxy system, a peripheral proxy The foregoing has outlined, rather broadly, preferred and 

system, and a method of providing substitute identifiers to a 25 alternative features of the present invention so that those 

server site that allow users to browse the same anonymously skilled in the art may better understand the detailed descrip- 

via the proxy system. lion of the invention that follows. Additional features of the 

In one embodiment, the present invention provides, for invention will be described hereinafter that form the subject 

use with a network having server sites capable of being ofthe claims of the invention. Those skilled in the art should 

browsed by users based on identifiers received into the appreciate that they can readily use the disclosed conception 

server sites and personal to the users, a central proxy system and specific embodiment as a basis for designing or modi- 

for providing substitute identifiers to the server sites that fym other structures for carrying out the same purposes of 

allow the users to browse the server sites anonymously via lne present invention. Those skilled in the art should also 

the central proxy system. According to various embodiments realize that such equivalent constructions do not depart from 

of the present invention, the substitute identifiers may be the spirit and scope of the invention in its broadest form, 
suitably constructed by the user site or a routine associated 

with the central site (advantageous ways (functions) of BRIEF DESCRIPTION OF THE DRAWINGS 

constructing the substitute identifiers are described For a more com p lete understanding of the present 

hereinafter). The exemplary central proxy system includes: 4Q mve ntion, reference is now made to the following descrip- 

(1) a computer-executable first routine that processes tions taken in conjunction with the accompanying drawings, 

(receives, accepts, obtains, constructs, produces, etc.) site- wherein like numbers designate like objects, and in which: 

specific substitute identifiers constructed from data specific .„ 4 4 « . . . . . c 

. t , , , j . . ,i , FIG. 1 illustrates a high-level block diagram of an exem- 

to the users, (2) a computer-executable second routine that . ^ i lL i_* i_ .i_ • * i fiL 

u /. . -i . *u ■ .t plary distributed network with which the principles of the 

transmits substitute identifiers to the server sites and there- AC v 3 A . . . t L1 , . -j 

- , , . , - .45 present invention may be suitably used to provide either a 

after retransmits browsing commands received from the r , , . , , i r « • 

. , , j ,_v L1 iL . , central or a peripheral proxy system for allowing users to 

users to the server sites and (3) a computer-executable third . f , , J r * •* r « i t 

. ✓■t ill - \ • r provide substitute identifiers to server sites of a network to 

routine that removes (and possibly substitutes) portions of Drowse anon mousl 

the browsing commands that would identify the users to the y 

server sites. "Include" and derivatives thereof, as used „ FIG - 2 illustrates a block diagram of an exemplary sub- 
herein, means inclusion without limitation. network of the distributed network of FIG. 1 showing a 
. ... , . , central proxy system that includes each of a user site, a 
In one embodiment, the first ol the two above-enumerated t , r J J , , , ... c ... , 
, r r , t , 4 , t ! central proxy system and a plurality of illustrative server 
basic lunctions is performed external to the central proxy . r , -Vru 

.... r . . . f . i . r : sites according to the principles of the present mvention; 

system, while in another it is performed, at least in part, & r r r 

within the central proxy system. The central proxy system 55 FIG - 3 illustrates an exemplary full screen window of a 

processes and forwards the substitute identifiers as appro- proxy system according to the principles of the present 

priatc and directly performs the second of the above- invention; 

enumerated basic functions by stripping other information FIG. 4 illustrates an exemplary full screen window of an 

that would tend to identify the users. An Internet Access interface of a particular server site according to the prin- 

Provider ("ISP"), such as NETCOM®, or a networking 60 ciples of the present invention; 

service, such as AMERICA ONLINE® or COM- FIG. 5 illustrates a block diagram of an exemplary sub- 

PUSERVE® can advantageously employ the central proxy network of the distributed network of FIG. 1 showing a 

system to provide anonymous retransmission of browsing peripheral proxy system that includes each of a user site, a 

commands by their users. central proxy system and a plurality of illustrative server site 

It is important to understand that subsequent use of the 65 according to the principles of the present invention; and 
proxy system by a "same" user to a "same" server site will FIG. 6 illustrates a block diagram of an exemplary sub- 
cause the proxy system to construct (directly or indirectly) network of the distributed network of FIG. 1 including each 
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of a user site, a central proxy system and a plurality of processes site-specific substitute identifiers constructed from 

illustrative server sites according to an exemplary marker data specific to user 105a (site-specific substitute identifiers 

proxy embodiment of the present invention. may be suitably constructed by a central proxy site 110a, 

such as by a routine associated with central proxy system 

DETAILED DESCRIPTION 5 110a); a second routine transmits the substitute identifiers to 

„ - . ■ ■ ,i . -i -ii . 4 j ■ u- L i i server site 110j? (possibly via a plurality of intermediate user 

Referring initially to FIG. 1 illustrated is a high-level and ^ r ^ ^ u ft and mereaf / er relrans miLs brows- 
block diagram of an exemplary distributed network m commands received from user site 105a to server site 
(generally designated 100) with which the principles of the UQ and a thifd routine removes (and possibly substitutes) 
present invention may be suitably used to provide either a p0 rtionsof the browsing commands that would identify user 
central or a peripheral proxy system. Distributed network «> ^ 1Q5fl tQ ^ m (jmd {hQ lm{{ q£ [n{Q[me _ 
100 illustratively includes a plurality of computer sites 105 diate usef an(J sefVer sites 1Q5 uo) m lcrm « routine/ . as 
to 110 that are illustratively associated by Internet 115. used herdn> is construed broadly to not onIy mclude ran . 
Internet 115 includes the World Wide Web, which is not a ventional meanings such as program, procedure, object, 
network itself, but rather an "abstraction" maintained on top task> subroutinej f unc tion, algorithm, instruction set and the 
of Internet 115 by a combination of browsers, server sites, " ^ bm a]&Q of inslruct ions, as well as function- 
HTML pages and the like. ally equivalent firmware and hardware implementations. 

According to the illustrated embodiment, either proxy Alternatively, according to an exemplary peripheral proxy 

system provides substitute identifiers to one or more of a system ( generally designated 120) of the present invention, 

plurality of server sites 110 of network 100. The substitute which fe discusse d in detail with reference to FIG. 5, that is 

identifiers allow user sites (and, hence, users (not shown)) to des i g ned for use with network 100 again having a server site 

browse the server sites anonymously via the proxy system, nQg capa bl e of being browsed by a user site 105a based on 

Consistent use of the same (site -specific) substitute identi- substitute identifiers received into server site Hog and that 

fiers at a particular server site personalizes browsing. For are personal t0 US er site 105a. Exemplary peripheral proxy 

purposes of illustration, site 105a is assumed throughout this system 12 o includes first and second executable routines, 

document to be a user site, site 110a is assumed to be a ^ first routme , which may advantageously reside in user 

central proxy site, and site 110^ is assumed to be a server site 105a or> alternatively, in central proxy system 110a, 

Slle - constructs a particular substitute identifier from data par- 

Those of skill in the pertinent art will understand that FIG. ticular to user site 105a. The second routine, which may also 

1 is illustrative only, in other configurations, any of sites 105 3Q advantageously reside in user site 105a or, partially, in user 

to 110 may be a user, a central proxy or a server site, or a s i te 105a and central proxy system 110a, transmits the 

combination of at least two of the same. "Server site/ 1 as the particular substitute identifier to central proxy system 110a. 

term is used herein, is construed broadly, and may include Central proxy system 110a then retransmits the particular 

any site capable of being browsed. substitute identifier to server site UOg and thereafter com- 

Although the illustrated embodiment is suitably imple- 35 municates (e.g., transmits, receives, etc.) information (e.g., 

mented for and used over Internet 115, the principles and browsing commands, data, etc.) between user site 105a to 

broad scope of the present invention may be associated with server site HOg. 

any appropriately arranged computer, communications, According to the illustrated embodiment, peripheral 

multimedia or other network, whether wired or wireless, that proxy system 120 differs from central proxy system 110a by 

has server sites capable of being browsed by users based on 40 the location of execution of the first and second routines. In 

identifiers received into the server sites and that are personal the illustrated central proxy embodiment, all routines are 

to the users. Further, though the principles of the present executed by central proxy system 110a, which means that all 

invention are illustrated using a single user site 105a, a users must send user specific information to central proxy 

single central proxy site 110a and a single server site 110& system 110a. In the illustrated peripheral proxy system 120, 

alternate embodiments within the scope of the same may 45 the first and second routines may be executed in a proxy 

include a plurality of user, central proxy or server sites. subsystem associated with user site 105a. In one advanta- 

Exemplary network 100 is assumed to include a plurality geous embodiment, user system 105a's user specific infor- 

of insecure communication channels that operate to inter- mation (e.g., user identification, passwords, e-mail 

couple ones of the various sites 105 to 110 of network 100. addresses, telephone numbers, credit card numbers, postal 

The concept of communication channels is known and 50 address, etc.) remain local, which will typically be more 

allows insecure communication of information among ones secure than central proxy system 110a. 

of the intercoupled sites (the Internet employs conventional As set forth hereinabove, an ISP, such as NETCOM®, or 

communication protocols that are also known). A distributed a networking service, such as AMERICA ONLINE® or 

network operating system executes on at least some of sites COMPUSERVE®, can advantageously employ either 

105, 110 and may manage the insecure communication of 55 exemplary proxy system (central or peripheral) to provide 

information therebetween. Distributed network operating anonymous communication (transmission, reception, 

systems are also known. retransmission, etc) of browsing (e.g., accessing, selection, 

According to exemplary central proxy system 110a of the reading, etc.) commands between user sites and server sites, 

present invention, which is discussed in detail with reference An important aspect of the above-identified embodiments 

to FIG. 2, substitute identifiers may be suitably indirectly 60 is the use of site -specific substitute identifiers to eliminate 

provided by central proxy system 110a to server site 11 Og the need for a user to have to "invent" a new user name and 

(recall that substitute identifiers allow user site 105a to password for each server site which requires the establisb- 

browse server site llOg anonymously). One or more site- ment of an account (e.g., the NEW YORK TIMES, the 

specific substitute identifiers are suitably provided or con- WALL STREET JOURNAL, the NEWS PAGE® and 

structed from data specific to user 105a either by user 105a 65 ESPN® sites). The illustrated embodiment generates secure 

or central proxy system 110a. Central proxy system 110a substitute identifiers (e.g., alias user names, passwords, 

includes a plurality of executable routines* — a first routine e-mail addresses, postal addresses, credit card numbers, etc.) 
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that are distinct and secure for the user. The user provides 
one or more character strings (which may be random) once, 
which may advantageously be at the beginning of a proxy 
system session. The proxy system uses the same to generate 
one or more secure site-specific substitute identifiers for the 5 
user — thereby freeing the user from the burden of inventing 
new and unique identifiers for each server site. Moreover, 
the user no longer has to type such secure identifiers every 
time the user returns to a particular server site requiring an 
account; instead the proxy system provides the appropriate 10 
secure identifiers automatically. In an advantageous embodi- 
ment to be described, the proxy system filters other identi- 
fying information (e.g., HTTP headers, etc.) sent by user site 
105a while browsing server sites. It is important to keep in 
mind that server sites cannot typically distinguish between is 
information supplied by proxy system 110a and information 
supplied by user site 105a — central proxy system 110a 
being transparent to server sites. 

In one embodiment, the substitute identifiers arc trans- 
mitted on demand from servers, without any intervention 20 
from the user. This process automates the response to a 
"basic authentication request," which is a common proce- 
dure used by servers to identify users on the World Wide 
Web. In this way, the user is not burdened by this activity. 

According to the illustrated embodiment, to produce 25 
substitute identifiers the proxy system may suitably maintain 
secret information (secret to at least one server-site) in the 
form of user definable character strings. These character 
strings may be user defined and may be maintained in some 
conventional manner, such as storing the same to memory 30 
associated with the proxy system, or, advantageously, a 
function (described hereinafter) may be used to produce the 
substitute identifiers, at least in part, in association with the 
secret information. According to one approach, the proxy 
system maintains a conventional data structure to maintain 35 
the same, such as a database, data repository, an array, etc., 
or even an alias table, that may be used to map user 
information to their substitute, or alias, identifiers. 

According to one advantageous embodiment, the user 40 
delivers its own secret (user definable character string) at the 
beginning of each session, which is used by the proxy 
system to generate, directly or indirectly, the substitute 
identifiers for the session. This option has the advantage that 
a user has the flexibility to choose different proxies at 45 
different times and there is no permanent secret information 
stored on the proxy system. In another related embodiment, 
the data comprises at least two secret user definable char- 
acter strings, wherein the first routine processes substitute 
identifiers constructed in part from the at least two secret 5Q 
user definable character strings. Of course, alternate suitable 
approaches may be used to accomplish the purpose of 
providing anonymous personalized web browsing according 
to the present invention. 

Turning now to FIG. 2, illustrated is a block diagram of 5S 
an exemplary sub-network (generally designated 200) of 
distributed network 100, wherein sub-network 200 includes 
user site 105a, central proxy system 110a and server site 
HOg (shown among a plurality of other illustrative server 
sites 110 of Internet 115) according to the principles of the 60 
present invention. 

For purposes of illustration, assume that user site 105a 
issues a command to access server site HOg (the NEW 
YORK TRIBUE web-site ("NYT")). Such access would be 
via central proxy system (server site) 110a, which ensures 65 
that user specific data concerning user site 105a is not 
communicated over the remainder of Internet 115 — there 
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may be HTTP header fields, for example, that include data 
about user site 105a that central proxy system 110a filters. 

Exemplary central proxy system 110a advantageously 
executes on a server site that is not associablc with user site 
105a by other sites over Internet 115. According to an 
advantageous embodiment, central proxy system. 110a may 
be suitably distant, both physically and logically, from user 
site 105a — user site 105a does not access server-sites 
directly because the server-sites can determine both physi- 
cally and logically the Internet Protocol ("IP") — address of 
the machine that made the request. 

According to the exemplary embodiment, if user site 
105a's command to access NYT Hog is user site 105a's first 
request of the current session, central proxy system 110a 
will recognize the same, and display its own HTML- 
document, possibly on user site 105a 's browser. 

Turning momentarily to FIG. 3, illustrated is an exem- 
plary full screen window of a conventional browser 300 
("NETSCAPE®") displaying an inlaid interface 305 
("JANUS SM ") of central proxy system U0a according to the 
principles of the present invention. Exemplary interface 305 
prompts a user of site 105a to enter user definable character 
strings, which according to the illustrated embodiment 
includes identification ("ID") data and secret ("S") data 
supplied by the user. Each user initially supplies a user ID 
(e.g., e-mail address) and a user S to allow one or more 
substitute identifiers to be chosen or constructed (site- 
specific substitute identifiers are suitably constructed from 
data specific to user 105a and a particular server site which 
user 105a intends to browse). Alternatively, other or further 
data supplied by the user may be appropriate in some 
applications (e.g., credit card number, post office address, 
handle, etc.). 

According to the advantageous embodiment, substitute 
identifiers may be constructed (generated) using a suitable 
function that includes the features of anonymity, 
consistency, collision resistance and uniqueness, protection 
from creation of dossiers, and single secret and acceptability. 
Concerning anonymity, the identity of the user should be 
kept secret; that is, a server site, or a coalition of sites, cannot 
determine the true identity of the user from its substitute 
identification. Concerning consistency, for each server-site, 
each user should be provided with some substitute identifiers 
allowing the server site to recognize the user given the same, 
thereby enabling the server site to personalize the user's 
access and the user can thus be "registered" at the server site. 

With respect to collision resistance and uniqueness, given 
a user's identity and a server site, a third party should not 
find a different user identity which results in the same alias 
(impersonation) for that server site. As to protection from 
creation of dossiers, the user is likely to be assigned a 
distinct alias (substitute identifier) for distinct server sites, so 
that a coalition of sites is unable to learn a user's habits and 
build a user profile (dossier) based on the set of sites 
accessed by the user. Lastly, single secret (user definable 
character string) and acceptability provides, given the user's 
identity and a single secret, automatic generation of secure, 
distinct aliases (substitute identifier) as needed for each 
server-site, transparent to the user — from the user's 
perspective, the user definable character string is equivalent 
to a universal password for a collection of server-sites. 

According to this embodiment, a user ID is "corrupt" (not 
secret) if an adversary (one or more server sites desirous of 
identifying the user), E, has been able to read the user's 
secret, S. Alternatively, a user ID is "partially opened" (not 
fully secure) with respect to a particular server site, w, if E 
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has been able to read the alias password; a user ID is 
"opened" (not secure) with respect to w, if it is partially 
opened and E has been able to relate the alias password 
together with the alias user name to the user ID. Assuming 
that the function, TQ, is defined as follows, T(user ID, 5 
web-site ("w"), S)=(substitute username, passwords), hence, 
T(id,w,S)o(Uw,Pw); and Tu(id,w,S)=Uw and Tp(id,w,S> 
Pw. 

T\i(id,w,S)=Uw«h(enc(k,id,f(s 1 , w))) and 
Tp(id,w,S)=Pw«h(enc(k,id,f(s 2 ,w))), wherein 30 
id denotes user site 105a's ID (e.g., e-mail address); 
w denotes server site HOg's domain name; 
|| denotes the logical function of concatenation; 
S denotes kllsj^ a user site 105a definable character 15 
string; 

. xor denotes the Boolean function of exclusive or; 

f(k,x) denotes a suitably arranged function for generating 
pseudo-random values, and may be selected from a group of 2Q 
functions, such as des(k,h(x),x); 

enc(k,x,r) denotes r||(f(k,r)xor x); 

h() denotes a collision-resistant hash function, such as 
MD5; and 

des(k,i,x) denotes DES encryption in cipher block chain- 25 
ing ("CBC") mode, which are known, of information x using 
key k and an initialization vector i. 
Both TuO and TpO may suitably truncate the result of the 
hashing function, hQ, to fit the longest allowed user name or 
password for the particular server site. 30 

Relating this function, TQ, to the above-identified and 
described features yields the following: 

1. E can only guess at the identity, ID, of a user which is 
only partially opened and uncorrupted. 

2. TO is a deterministic function and E can only guess at 35 
the alias-password of a user which is unopened and uncor- 
rupted. 

3. Given w and an uncorrupted and unopened user ID, E 
can only guess at the ID and S. 

4. For an uncorrupted user ID and w, T(id,w,S) does not 40 
give to E information about TpdjW'.S) for any w' not equal 
toW. 

5. The range of T(id,w,S) is such that it is accepted by 
server sites as a valid username and password — implying a 
limited length string of printable characters. 45 
Those skilled in the pertinent art will understand that alter- 
nate suitable functions may replace or be used in association 
with the foregoing according to the principles of the present 
invention. 

Use of the foregoing exemplary substitute identifier con- 50 
structing function, and for that matter, any other suitably 
arranged function for constructing substitute identifiers 
according to the present invention, operates to foster the 
above-identified features of anonymyzed and personalized 
browsing. The present invention provides the ability to 55 
anonymously visit a server site a first time via site -specific 
substitute identifiers, to interact with the server site as a 
function thereof, and to re-visit the server site on subsequent 
occasions using the same site -specific substitute identifiers, 
interacting with the server site as a return customer — 60 
possibly receiving personalized attention — as a function of 
the recognized substitute identifiers. Simply stated, the sub- 
stitute identifiers are constructed consistently, and in advan- 
tageous embodiments in a site -specific manner. 

In one embodiment of the present invention, the substitute 65 
identifiers include site-specific substitute user names and 
site-specific substitute user passwords. "Site-specific" 
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means that the names and passwords vary from site to site, 
depending perhaps upon the address of each site. This may 
complicate the task of creating a dossier relative to a given 
user. In a related embodiment, the first routine constructs 
site -specific substitute e-mail addresses for user site 105a 
from the site-specific data. In an alternate advantageous 
embodiment, the first routine constructs the site-specific 
substitute identifiers from addresses of the server sites — of 
course, site -specific information other than the address of 
the site may be used to construct the substitute identifiers. 

If this is the first contact of the user with central proxy 
system 110a, then the user may suitably generate a user 
defined character string (secret) at random and store the 
same locally. In one advantageous embodiment, the first 
routine processes substitute identifiers that may be con- 
structed by applying pseudo-random and hash functions 
(e.g., TO function set forth hereinabove) to the data received 
from user site 105a — those skilled in the art are familiar with 
the structure and operation of pseudo-random and hash 
functions and their utility. The important aspect of this and 
related embodiments is that the present invention is adapted 
to take advantage of current and later-discovered functions 
to enhance anonymity and security. 

Alternatively, if this is the first contact of a current session 
then the user may suitably enclose the stored user defined 
character string to central proxy system 110a. Nonetheless, 
browser 300 sends interface 305 together with a user's ID 
and other user definable character string to central proxy 
system 110a. Central proxy system 110a receives this infor- 
mation and may use the same for the rest of the session. 

In one advantageous embodiment, the first routine 
receives or generates session tags that are added to the 
browsing commands, central proxy site 110a employing the 
session tags to associate the substitute identifiers with each 
of the browsing commands — the session tags, while not 
necessary to the present invention, provide one manner that 
allows user sites 105a to supply their data only once, usually 
at the beginning of each session. In a related advantageous 
embodiment, central proxy site 110a includes a data store 
that is capable of containing session information specific to 
user sites 105a and accessible by server sites HOg. 

In one advantageous embodiment, the second routine 
described above, which may be local to the central proxy 
system HOa, transmits the substitute identifiers to server site 
HOg. In a further advantageous embodiment, the second 
routine transmits the substitute identifiers to server site 11 Og 
based on alphanumeric codes supplied in fields of web- 
pages 305 by the users. The alphanumeric codes prompt the 
second routine as to how and where to locate the substitute 
identifiers, removing the users from actually having to 
provide the substitute identifiers directly. Of course, the 
alphanumeric codes may be supplied in a different form. In 
a related, more specific embodiment, the users manually 
place the alphanumeric codes in the fields of web-pages 305. 
Of course, the present invention encompasses intelligent 
parsing of the fields of web pages 305 to determine auto- 
matically how and where the alphanumeric codes should be 
located. Those skilled in the art are familiar with the Internet 
in general, the World Wide Web in particular and the way in 
which the structure of the World Wide Web promotes 
"browsing." The present invention finds apparent utility in 
conjunction with the Internet and the World Wide Web, 
however, those skilled in the art will readily understand that 
the present invention has advantageous application outside 
of the Internet as well in any suitably arranged computer, 
communications, multimedia or like network configuration. 

Nonetheless, after central proxy system 110a obtains the 
required information about the user, the above-described 
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third routine removes portions of the browsing commands 
that would identify user site 105a to server site 11 Og, and 
forwards user site 105a's original request for access to 
NYT-site HOg (e.g., using an HTTP get-request) — thereby 
selectively excluding from the request header-fields or the 
like that may identify the user. 

If this is the user's first visit to NYT-site HOg, then it may 
suitably provide the user with an electronic form prompting, 
for example, for a user name, a password and an e-mail 
address in order to establish an account. Turning momen- 
tarily to FIG. 4, illustrated is exemplary full screen window 
of conventional NETSCAPE® browser 300 displaying an 
inlaid interface 400 ("THE NEW YORK TRIBUNE") of 
server site 11 Og according to the principles of the present 
invention. 

Now, instead of having to provide a unique user name and 
a secret password, the user may suitably provide these fields 
with simple escape strings (e.g., "<uuuu>" and "<pppp>"). 
More specifically, the alphanumeric codes above-described 
may be suitably arranged into such escape sequences — those 
skilled in the art are familiar with escape sequences. These 
strings are recognized by central proxy site 110a which uses 
user site 105a's user name and secret (user definable char- 
acter string) along with the domain-name of the NEW 
YORK TRIBUNE and computes substitute identifiers (e.g., 
alias user name, u3, and alias password, p3, in FIG. 2, etc.), 
such as by function T(1D, secret, domain-name). The site- 
specific substitute identifiers may be sent to a particular 
server site by central proxy system 11 ()a using the same 
mechanism that the user would submit input to the particular 
server site. In other words, proxy system 110a receives 
information communications, such as browsing commands, 
from user site 105a intended for server site llOg, and 
retransmits the same to server site HOg — central proxy 
system 110a functioning as a transparent conduit for ano- 
nymizing and, through consistent generation of site -specific 
substitute identifiers, personalizing server site browsing. 

On a subsequent visit to NYT-site HOg, which will 
require that user site 105a authenticate itself (response to the 
first get-request forwarded to NYT-site HOg by central 
proxy system 110a), central proxy system 110a may be 
suitably operative to automatically recompute u3 and p3 and 
reply by sending these values back to NYT-site HOg (re- 
sending the get- request). User site 105a is thereby freed 
from the burden of remembering the user name and pass- 
word of its NYT-site llOg account. To summarize, the 
protocol, which may be suitably executed without involving 
user site 105a, includes: (1) a step of NYT-site server HOg 
requesting an authentication from central proxy site 110a by 
failing the first get request; (2) central proxy site 110a 
recomputing the substitute identifiers (e.g., (alias-user name, 
alias-password)=T(lD, secret, domain-name), or the like); 
(3) central proxy site 110a replying by re-sending the get 
with the same substitute identifiers. 

The substitute identifiers are consistent in the sense that 
the substitute identifiers are presented on subsequent visits 
to the same server site by user 105a. Consistent substitute 
identifiers allow server sites to recognize returning users and 
provide personalized service to them. In one embodiment, 
the second routine transmits the substitute identifiers on 
demand from servers, without any intervention from user 
105a. This process automates the response to a "basic 
authentication request," which is a common procedure used 
by servers to identify users 105a on the World Wide Web. In 
this way, user 105a is not burdened by this activity. In this 
embodiment, the second routine may have to re-transmit the 
original user request along with the substitute identifier to 
the server. 
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It should be noted that many servers require a valid e-mail 
address for creating an account — users cannot use their true 
e-mail address for this purpose since it uniquely identifies 
them. The proxy system of the present invention may 
suitably solve this problem by creating an alias c-mail 
address for user site 105a and store e-mail in an electronic 
mailbox. In one advantageous embodiment central proxy 
system 110a includes a data store capable of containing 
e-mail destined for the users, thereby preventing server sites 
from contacting users directly. Contrary to prior art anony- 
mous re-mailers, the present embodiment is not required to 
rely on having to store any translation tables (which may be 
large and vulnerable) from alias to true user identifiers in 
central proxy system 110a. This embodiment is inherently 
securer than prior art approaches as central proxy system 
110a is not required to maintain and protect a translation 
table and cannot be forced to reveal the contents of any such 
table to a third party. 

In an alternate advantageous embodiment, central proxy 
system 105a further includes a data store capable of con- 
taining e-mailboxes for the users and specific to the server 
sites. According to this embodiment, each user has a mail- 
box for each site that has generated mail destined for the 
user. Rather than compromising security by allowing auto- 
matic remailing to the user, the present embodiment may 
store e-mail for explicit retrieval by each user. 

For each server, it may be advantageous for users to have 
a separate e-mail box, possibly identified by user-substitute 
identifiers. This approach may allow for suitable disposal of 
e-mail messages received from the third-parties (e.g., "junk 
e-mail") as well as the option of selective disposal of e-mail 
messages. 

In one advantageous embodiment, each of e-mailboxes 
has a key associated therewith, the key being a function of 
the data and an index number. The use of keys with 
e-mailboxes is known. In another advantageous 
embodiment, central proxy system 110a further comprises a 
computer-executable routine that, given the substitute 
identifiers, collects e-mail destined for the users and con- 
tained within a plurality of site-specific e-mailboxes. This 
embodiment may suitably employ a mail-collecting routine 
that automatically locates user site 105a 's various mailboxes 
and retrieves the mail therefrom once the user has supplied 
the appropriate data. 

According to one advantageous embodiment, central 
proxy system 110a includes functionality necessary to sup- 
port electronic payment, the users employ electronic pay- 
ment information to engage in anonymous commerce with 
the server sites. To facilitate the same, central proxy system 
110a may include a data store capable of containing such 
electronic payment information. Further, substitute identifi- 
ers may be constructed, at least in part, using credit/debit 
card numbers, bank branch or account numbers, postal 
addresses, telephone numbers, tax identification numbers, 
social security numbers or the like. Various methods for 
achieving anonymous commerce are known. 

' By way of further example, an ever increasing number of 
sites require a valid credit card number as part of establish- 
ing an account, so that such sites may charge the user for 
their services (e.g., WALL STEET JOURNAL®, ESPN®, 
etc.). While the above-described proxy system provides 
substitute identifiers to free users from remembering these 
items and by providing a guard on (involuntary) data flow- 
ing to the web-site, it may not provide complete anonymity 
to a user who has provided a credit card number to a site. 
One solution, described briefly above, requires central proxy 
system 110a to provide its own valid credit card number to 
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the requesting site and then collect money from its users. If 
central proxy system 105a is incorporated into an Internet 
provider, for example, such as AMERICA ONLINE®, then 
this relationship may already exist. 

Alternatively, central proxy system 110a may be known 
and trusted by other sites, thereby allowing central proxy 
system 110a to generate an alias credit card number and 
expiration date, and then to authenticate this data and send 
it to a requesting site. The site can then check that this 
number indeed originates from central proxy system 110a 
and hence accepts the same as valid, with the understanding 
that it can collect the money from central proxy system 
110a. There no longer is a need to send a "real*' credit card 
number between central proxy system 110a and the sites. 

It is important to realize that the various features and 
aspects of the embodiments above-described may also be 
suitably implemented in accordance with the peripheral 
proxy system described with reference to FIG. 1. More 
particularly, turning momentarily to FIG. 5, there is illus- 
trated a block diagram of an exemplary sub-network 
(generally designated 500) of the distributed network of 
FIG. 1 showing a peripheral proxy system 120 that includes 
each of user site 105a, central proxy system 110a and 
NYT-site HOg (shown among a plurality of other illustrative 
server sites 110 of Internet 115) according to the principles 
of the present invention. 

Peripheral proxy system 120, as set forth above, includes 
first and second executable routines. The first routine, which 
advantageously resides in user site 105a, constructs substi- 
tute identifiers from data particular to user site 105a. The 
second routine, which also illustratively resides in user site 
105a, transmits the substitute identifiers to central proxy 
system 110a. Central proxy system 110a then retransmits the 
substitute identifiers to server site HOg and thereafter com- 
municates (e.g., transmits, receives, etc.) information (e.g., 
browsing commands, data, etc) between user site 105a to 
server site HOg. This second configuration is particularly 
advantageous when users may not trust central proxy system 
110a or the communication lines therebetween, and want to. 
keep user identifications and other secret information secure. 

A local proxy system 510 may be used to maintain the 
same, and may use the user's identification and other .infor- 
mation to compute the substitute identifiers. Local proxy 
system 510 communicates with a central proxy system 110a, 
which may be used to forward communication to servers and 
handle e-mail. In one embodiment, central proxy system 
110a communicates with computer-executable local rou- 
tines associated with the users, the local routines construct- 
ing the site-specific substitute identifiers from data specific 
to the users. Again, central proxy system 110a may rely on 
distributed routines, local to each user, that generate the 
substitute identifiers and transmit the same to central proxy 
system 110a. 

Turning now to FIG. 6, illustrated is a block diagram of 
an exemplary sub -network (generally designated 600) of the 
distributed network 100 including each of user site 105a, 
central proxy system 110a and a plurality of illustrative 
server sites 110£>, 110c, and HOg according to an exemplary 
marker proxy embodiment of the present invention. As 
described above, the central proxy system of the present 
invention may be employed in at least two configurations, 
namely, a central proxy configuration (FIG. 2) or a periph- 
eral proxy configuration (FIG. 5). 

In the central proxy configuration; central proxy system 
110a computes substitute identifiers. An implementation of 
this configuration may require user site 105a to provide one 
or more user definable character strings (e.g., user 



10 



15 



20 



25 



30 



35 



45 



50 



55 



60 



65 



identification, password and other secret information) once, 
and central proxy system 110a will thereafter generate the 
substitute identifiers as needed. Central proxy system 110a 
may associate the user definable character strings with a 
series of HTTP requests generated by the same user site 
105a — the central proxy system 110a may associate each 
request with a session, that contains all communication 
between a specific user site 105a and the central proxy 
system 110a. 

The HTTP, protocol however does not generally directly 
support sessions or relationships between requests. More 
particularly, each HTTP request may be sent a new socket 
connection, and there is no required HTTP header field that 
can link successive requests from the same user. 

It should be noted that the session identification is typi- 
cally not necessary in the peripheral proxy configuration 
since central proxy system 110a may forward communica- 
tions without any computation. In a typical embodiment, 
peripheral proxy system 120 retransmits browsing com- 
mands received from user site 105a to central proxy system 
110a, which then retransmits such commands to server site 
HOg. According to one embodiment, peripheral proxy sys- 
tem 120 removes and, possibly, substitutes portions of the 
browsing commands that would identify user site 105a to 
server site HOg. 

In one advantageous embodiment user site 105a runs a 
marker program 605 locally. Marker program 605 operates 
to tag user site 105a' s requests with a session tag, t. Central 
proxy system 110a uses this tag to identify requests belong- 
ing to a particular one of a group of users. Marker program 
605 may be implemented to store user site 105a's session tag 
and add this tag to all requests, and central proxy system 
110a removes the session tag before forwarding the request 
to some server site. The session tag should be unique, as no 
two users should have the same tag. 

It should be noted that NETSCAPE® uses "cookies," 
which are a mechanism for storing and retrieving long term 
session information (the use of "cookies" conceptually is 
known). The cookies are generated by the browsed servers 
and are associated with a specific domain name. Browsers 
300 submit the cookies associated with a specific domain 
name whenever the user re-visits that domain. Servers 
typically only generate cookies associated with their 
domain. Cookies provide an easy mechanism to keep ses- 
sion information, such as the contents of a "shopping cart," 
account name, password, event counters, user preferences, 
etc. 

Some companies, use cookies extensively to track users 
and their habits. Since the proxy systems of the present 
invention present substitute identifiers to browsed servers, 
the servers cannot learn true user identities. Thus all of the 
information that the server may store in its cookie relates to 
some "alias persona," and not to the true user. Whenever the 
user returns to the same server, it will present the same 
substitute identifiers, and may also submit the cookie that the 
server generated earlier for this alias persona. 

It is apparent from 'above, that the present invention 
provides, for use with a network having user sites and server 
sites, wherein the server sites are capable of being browsed 
by the user sites based on identifiers received into the server 
sites and personal to the user sites, both a central and a 
peripheral proxy system for providing consistent substitute 
identifiers to the server sites that allow the user sites to 
browse the server sites in an anonymous and personal 
fashion via the proxy system. 

An exemplary central proxy system includes: (1) an 
executable first routine that processes site-specific substitute 
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identifiers constructed from data specific to the user sites, (2) 
an executable second routine that transmits the substitute 
identifiers to the server sites and thereafter retransmits 
browsing commands received from the user sites to the 
server sites and (3) an executable third routine that removes 5 
(and possibly substitutes) portions of the browsing com- 
mands that would identify the user sites to the server sites. 

An exemplary peripheral proxy system includes: (1) an 
executable first routine that constructs a particular substitute 
identifier from data received from a particular user site and 
(2) an executable second routine that transmits the particular 
substitute identifier to a central proxy system, the central 
proxy system then retransmitting the particular substitute 
identifier to the server site and thereafter retransmitting 
browsing commands received from the particular user site to 
the server site. 15 

Although the present invention has been described in 
detail, Lhose skilled in the art should understand that they can 
make various changes, substitutions and alterations herein 
without departing from the spirit and scope of the invention 
in its broadest form. More particularly, it should be apparent 20 
to those skilled in the pertinent art that the above-described 
routines are software-based and executable by a suitable 
conventional computer system/network. Alternate embodi- 
ments of the present invention may also be suitably 
implemented, at least in part, in firmware or hardware, or 2 s 
some suitable combination of at least two of the three. Such 
firmware- or hardware embodiments may include multi, 
parallel and distributed processing environments or 
configurations, as well as alternate programmable logic 
devices, such as programmable array logic ("PALs") and 30 
programmable logic arrays ("PLAs"), digital signal proces- 
sors ("DSPs"), field programmable gate arrays ("FPGAs"), 
application specific integrated circuits ("ASICs"), large 
scale integrated circuits ("LSIs"), very large scale integrated 
circuits ("VLSIs") or the like — to form the various types of 35 
modules, circuitry, controllers, routines and systems 
described and claimed herein. 

Conventional computer system architecture is more fully 
discussed in The Indispensable PC Hardware Book, by 
Haas-Peter Messmer, Addison Wesley (2nd ed. 1995) and 40 
Computer Organization and Architecture, by William 
Stallings, MacMillan Publishing Co, (3rd ed. 1993); con- 
ventional computer, or communications, network design is 
more fully discussed in Data Network Design, by Darren L, 
Spohn, McGraw-Hill, Inc. (1993); and conventional data 45 
communications is more fully discussed in Voice and Data 
Communications Handbook, by Bud Bates and Donald 
Gregory, McGraw-Hill, Inc. (1996), Data Communications 
Principles, by R. D. Gitlin, J. F. Hayes and S. B. Weinstein, 
Plenum Press (1992) and The Irwin Handbook of 50 
Telecommunications, by James Harry Green, Irwin Profes- 
sional Publishing (2nd ed. 1992). Each of the foregoing 
publications is incorporated herein by reference for all 
purposes. 

What is claimed is: 55 
1. A central proxy system for coupling to a network and 
for allowing users to browse server sites on said network 
anonymously via said central proxy system, said central 
proxy system comprising: 

a computer-executable first routine that processes site- 60 
specific substitute identifiers constructed from non- 
masked data specific to said users, such that said server 
sites are unable to determine an identity of said user; 
a computer-executable second routine that transmits said 
substitute identifiers to said server sites and thereafter 65 
retransmits browsing commands received from said 
users to said server sites; and 
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a computer-executable third routine that removes portions 
of said browsing commands that would identify said 
users to said server sites. 

2. The central proxy system as recited in claim 1 wherein 
said data comprises identification data and a user definable 
character string supplied by said users. 

3. The central proxy system as recited in claim 1 wherein 
said site-specific substitute identifiers comprise site-specific 
substitute user names and site -specific substitute user pass- 
words. 

4. The central proxy system as recited in claim 1 wherein 
said first routine constructs site-specific substitute electronic 
mail addresses for said users from said data. 

5. The central proxy system as recited in claim 1 wherein 
said first routine constructs said site-specific substitute iden- 
tifiers from addresses of said server sites. 

6. The central proxy system as recited in claim 1 wherein 
said server sites are World Wide Web sites capable of 
presenting web pages to said users, said second routine 
transmitting said substitute identifiers to said server sites 
under direction of said users. 

7. The central proxy system as recited in claim 1 wherein 
said second routine transmits said substitute identifiers to 
said server sites based on alphanumeric codes supplied in 
web page fields by said users. 

8. The central proxy system as recited in claim 7 wherein 
said alphanumeric codes are arranged in escape sequences. 

9. The central proxy system as recited in claim 7 wherein 
said users manually place said alphanumeric codes in said 
web page fields. 

10. The central proxy system as recited in claim 9 wherein 
said central proxy system communicates with computer- 
executable local routines associated with said users, said 
local routines constructing said site-specific substitute iden- 
tifiers from data specific to said users. 

11. The central proxy system as recited in claim 1 further 
comprising a data store capable of containing electronic mail 
destined for said users. 

12. The central proxy system as recited in claim 1 wherein 
said first routine processes substitute identifiers constructed 
by applying pseudo-random and hash functions to said data 
received from said users. 

13. The central proxy system as recited in claim 1 further 
comprising a data store capable of containing electronic 
mailboxes for said users and specific to said server sites. 

14. The central proxy system as recited in claim 13 
wherein each of said electronic mailboxes has a key asso- 
ciated therewith, said key being a function of said data and 
an index number. 

15. The central proxy system as recited in claim 1 further 
comprising a computer-executable routine that, given said 
substitute identifiers, collects electronic mail destined for 
said users and contained within a plurality of site-specific 
electronic mailboxes. 

16. The central proxy system as recited in claim 1 wherein 
said first routine receives session tags added to said brows- 
ing commands, said central proxy system employing said 
session tags to associate said substitute identifiers with each 
of said browsing commands. 

17. The central proxy system as recited in claim 1 further 
comprising a data store capable of containing session infor- 
mation specific to said users and accessible by said server 
sites. 

18. The central proxy system as recited in claim 1 further 
comprising a data store capable of containing electronic 
payment information, said users employing said electronic 
payment information to engage in anonymous commerce 
with said server sites. 
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19. The central proxy system as recited in claim 1 further 
comprising an initializing routine that constructs said site- 
specific substitute identifiers from data specific to said users 
and communicates said site-specific substitute identifiers to 
said first routine, 

20. A peripheral proxy system for coupling to a network 
and for allowing at least one user to browse a server site on 
said network anonymously via a central proxy system, said 
peripheral proxy system comprising: 

a computer-executable first routine that constructs a par- 
ticular substitute identifier from non-masked data 
received from a particular user, such that said server 
site is unable to determine an identity of said user; and 

a computer-executable second routine that transmits said 
particular substitute identifier to said central proxy 
system, said central proxy system retransmitting said 
particular substitute identifier to said server site and 
thereafter retransmitting browsing commands received 
from said particular user to said server site. 

21. The peripheral proxy system as recited in claim 20 
wherein said data comprises identification data and a user 
definable character string supplied by said particular user. 

22. The peripheral proxy system as recited in claim 20 
wherein said particular substitute identifier comprises a 
particular substitute user name and a particular substitute 
user password. 

23. The peripheral proxy system as recited in claim 20 
wherein said first routine constructs a particular substitute 
electronic mail address for said particular user from said 
data. 

24. The peripheral proxy system as recited in claim 20 
wherein said first routine constructs said particular substitute 
identifier from an address of said server site, said particular 
substitute identifier therefore being specific to said server 
site. 

25. The peripheral proxy system as recited in claim 20 
wherein said server site is a World Wide Web site capable of 
presenting at least one web page to said users, said central 
proxy system transmitting said particular substitute identi- 
fier to said server site under direction of said particular user. 

26. The peripheral proxy system as recited in claim 20 
wherein said central proxy system said particular substitute 
identifier to said server site based on alphanumeric codes 
supplied in web page fields by said user. 

27. The peripheral proxy system as recited in claim 26 
wherein said alphanumeric codes are arranged in escape 
sequences. 

28. The peripheral proxy system as recited in claim 20 
wherein " said central proxy system further comprises a 
computer-executable third routine that removes portions of 
said browsing commands that would identify said particular 
user to said server site. 

29. The peripheral proxy system as recited in claim 28 
wherein said first and second routines are executable on a 
computer system associated with said particular user and 
said central proxy system is a computer system having a 
network address different from said computer system asso- 
ciated with said particular user. 

30. The peripheral proxy system as recited in claim 20 
wherein said central proxy system further comprises a data 
store capable of containing electronic mail destined for said 
particular user. 

31. The peripheral proxy system as recited in claim 20 
wherein said first routine constructs said particular substitute 
identifier by applying pseudo-random and hash functions to 
said data received from said particular user, 

32. The peripheral proxy system as recited in claim 20 
wherein said central proxy system further comprises a data 
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store capable of containing an electronic mailbox for said 
particular user and specific to said server site. 

33. The peripheral proxy system as recited in claim 32 
wherein said electronic mailbox has a key associated 

5 therewith, said key being a function of said data and an index 
number. 

34. The peripheral proxy system as recited in claim 20 
wherein said central proxy system further comprises a 
computer-executable routine that, given said particular sub- 

3Q stitute identifier, collects electronic mail destined for said 
particular user and contained within at least two electronic 
mailboxes. 

35. The peripheral proxy system as recited in claim 20 
wherein said central proxy system further comprises a 
computer-executable marker routine that adds session tags 

15 to said browsing commands, said proxy system employing 
said session tags to associate said particular substitute iden- 
tifier with each of said browsing commands. 

36. The peripheral proxy system as recited in claim 20 
wherein said central proxy system further comprises a data 

20 store capable of containing session information specific to 
said particular user and accessible by said server site. 

37. The peripheral proxy system as recited in claim 20 
wherein said central proxy system further comprises a data 
store capable of containing electronic payment information, 

25 said particular user employing said electronic payment 
information to engage in anonymous commerce with said 
server site. 

38. A method for use with a network having a server site 
capable of being browsed by users and for allowing said 

3Q users to browse said server site on said network anony- 
mously via said proxy system, said method comprising the 
steps of: 

constructing a particular substitute identifier from non- 
masked data received from a particular user, such that 
said server site is unable to determine an identity of said 
user; 

transmitting said particular substitute identifier to said 

server site; and 
thereafter retransmitting browsing commands received 
from said particular user to said server site. 
40 39. The method as recited in claim 38 wherein said data 
comprises identification data and a user definable character 
string supplied by said particular user. 

40. The method as recited in claim 38 wherein said 
particular substitute identifier comprises a particular substi- 

45 tutc user name and a particular substitute user password. 

41. The method as recited in claim 38 further comprising 
the step of constructing a particular substitute electronic 
mail address for said particular user from said data. 

42. The method as recited in claim 38 wherein said step 
50 of constructing comprises the step of constructing said 

particular substitute identifier from an address of said server 
site, said particular substitute identifier therefore being spe- 
cific to said server site. 

43. The method as recited in claim 38 wherein said server 
55 site is a World Wide Web site capable of presenting at least 

one web page to said users, said method further comprising 
the step of transmitting said particular substitute identifier to 
said server site under direction of said particular user. 

44. The method as recited in claim 38 wherein said step 
60 of transmitting comprises the step of transmitting said 

particular substitute identifier to said server site based on 
alphanumeric codes supplied in web page fields by said user. 

45. The method as recited in claim 44 wherein said 
alphanumeric codes are arranged in escape sequences. 

65 46. The method as recited in claim 38 further comprising 
the step of removing portions of said browsing commands 
that would identify said particular user to said server site. 
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47. The method as recited in claim 46 wherein said step 
of constructing is performed on a computer system associ- 
ated with said particular user and said steps of transmitting 
and thereafter transmitting are performed on a computer 
system having a network address different from said com- 
puter system associated with said particular user. 

48. The method as recited in claim 38 further comprising 
the step of storing electronic mail destined for said particular 
user, 

49. The method as recited in claim 38 wherein said step 
of constructing comprises the step of applying pseudo- 
random and hash functions to said data received from said 
particular user. 

50. The method as recited in claim 38 further comprising 
the step of creating an electronic mailbox for said particular 
user and specific to said server site. 

51. The method as recited in claim 50 wherein said 
electronic mailbox has a key associated therewith, said key 
being a function of said data and an index number. 
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52. The method as recited in claim 38 further comprising 
the step of collecting electronic mail destined for said 
particular user and contained within at least two electronic 
mailboxes given said particular substitute identifier. 

53. The method as recited in claim 38 further comprising 
the step of adding session tags to said browsing commands, 
said proxy system employing said session tags to associate 
said particular substitute identifier with each of said brows- 
ing commands. 

54. The method as recited in claim 38 further comprising 
the step of storing session information specific to said 
particular user and accessible by said server site. 

55. The method as recited in claim 38 further comprising 
the step of storing electronic payment information, said 
particular user employing said electronic payment informa- 
tion to engage in anonymous commerce with said server site. 
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ABSTRACT 



File mappings are dynamically loaded within an operating 
data processing system appended to existing file or directory 
mappings during operation rather than being loaded during 
system initialization. A triggering event, such as a user 
logging into a network from the data processing system with 
a unique userid, initiates the process for selectively loaded 
the dynamic file mappings. A context variable, such as the 
userid of the user logging into the network, is employed to 
select the set or table of file mappings which are dynamically 
loaded. The dynamically loaded file mappings are appended 
to traditional, machine -specific file mappings loaded at 
system initialization and may be unloaded without affecting 
such traditional file mappings. The capability of dynamic file 
mapping allows single -user applications, those designed for 
use by only one user al a time, to be shared from a single 
network location, with user-specific files mapped to different 
locations for different users. Thus, only one copy of a 
browser is required in a network computer environment. 
Sensitive files, such as bookmark, security, and cookie files, 
are dynamically mapped to a user-specific directory based 
on the userid regardless of the user unit from which the user 
logs in. Multiple users may share a single copy of the single 
user browser, and users may "roam" the network, logging in 
at any data processing system. 

10 Claims, 4 Drawing Sheets 
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DYNAMIC FILE MAPPING FOR NETWORK 
COMPUTERS 

BACKGROUND OF THE INVENTION 

1. Technical Field 

The present invention relates in general to application file 
management within data processing systems and in particu- 
lar to application- and user-specific file mapping within data 
processing systems or networks. Still more particularly, the 
present invention relates to user-based dynamic file mapping 
allowing sharing of single-user applications. 

2. Description of the Related Art 

Applications may be stored on network servers and run 
from workstations connected to the network. Different users 
authorized access to the network may run the application 
remotely from different workstations connected to the net- 
work. In the best cases, however, significant duplication of 
files is typically required. In some cases, a complete copy of 
the application for each user must be stored on the server. 

Currently, the only mechanisms available for transpar- 
ently remapping application files are machine-specific. 
Unix's symbolic links, for example, allow a dummy file- 
name to be mapped to a secondary location, but only in a 
machine -specific fashion. PC RIPL (Remote Boot) Fileln- 
directionTables are also machine-specific and are loaded at 
boot time. Distributed File System (DFS) implements 
"referrals," which provide static directory mapping, which is 
constant across all machines and users. 

Machine-specific file remappings typically cannot handle 
the case of configuration files. Single user applications — i.e. 
applications which are not designed for concurrent use by 
multiple users — include configuration files containing user 
preferences, cache or data files storage locations, etc. Such 
configuration files are user specific and typically should be 
stored in different, access-restricted directories. 

It would be desirable, therefore, to provide a mechanism 
for dynamically remapping files associated with single user 
applications in a machine-independent fashion. 

SUMMARY OF THE INVENTION 

It is therefore one object of the present invention to 
provide an improved method and apparatus for application 
file management within data processing systems. 

It is another object of the present invention to provide an 
improved method and apparatus for application- and user- 
specific file mapping within data processing systems or 
networks. 

It in yet another object of the present invention to provide 
a method and apparatus for user-based dynamic file mapping 
allowing sharing of single-user . applications. 

The foregoing objects are achieved as is now described. 
File mappings are dynamically loaded within an operating 
data processing system appended to existing file or directory 
mappings during operation rather than being loaded during 
system initialization. A triggering event, such as a user 
logging into a network from the data processing system with 
a unique userid, initiates the process for selectively loading 
the dynamic file mappings or reloading new dynamic file 
mappings. A context variable, such as the userid of the user 
logging into the network, is employed to select the set or 
table of file mappings which are dynamically loaded. The 
dynamically loaded file mappings are appended to 
traditional, machine-specific file mappings loaded at system 
initialization and may be unloaded without affecting such 
traditional file mappings. The capability of dynamic file 
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mapping allows single -user applications, those designed for 
use by only one user at a time, to be shared from a single 
network location, with user-specific files mapped to different 
locations for different users. Thus, only one copy of a 

5 browser is required in a network computer environment. 
Sensitive files, such as bookmark, security, and cookie files, 
are dynamically mapped to a user-specific directory based 
on the userid regardless of the user unit from which the user 
logs in. Multiple users may share a single copy of the single 

10 user browser, and users may "roam" the network, logging in 
at any data processing system. 

The above as well as additional objects, features, and 
advantages of the present invention will become apparent in 
the following detailed written description. 

15 

BRIEF DESCRIPTION OF THE DRAWINGS 

The novel features believed characteristic of the invention 
are set forth in the appended claims. The invention itself 
however, as well as a preferred mode of use, further objects 
20 and advantages thereof, will best be understood by reference 
to the following detailed description of an illustrative 
embodiment when read in conjunction with the accompa- 
nying drawings, wherein: 

FIGS. 1A and IB depict physical and functional block 
25 diagrams of a data processing system network in accordance 
with a preferred embodiment of the present invention; 

FIG. 2 is a user-specific mapping table for dynamic file 
mapping in accordance with a preferred embodiment of the 
3Q present invention; 

FIGS. 3 A and 3B depict high level flowcharts for pro- 
cesses of establishing and employing dynamic file mapping 
in accordance with a preferred embodiment of the present 
invention. 

35 DETAILED DESCRIPTION OF THE 

PREFERRED EMBODIMENT 

With reference now to the figures, and in particular with 
reference to FIGS. 1A-1B, physical and functional block 

40 diagrams of a data processing system network in accordance 
with a preferred embodiment of the present invention is 
depicted. FIG. 1A depicts the physical components of net- 
work 100, which is preferably a local area network (LAN) 
of one of various types known in the art (Ethernet, etc.). 

45 Network 100 in the exemplary embodiment includes a 
plurality of user units 102 and 104 and a plurality of servers 
106 and 108. The present invention may be employed with 
only a single user unit and a single server, and the user unit 
and the server unit may be co located. However, the benefits 

50 of the present invention may best be obtained within a 
network including a plurality of user units and at least one 
server. User units 102 and 104 and servers 106 and 108 are 
all data processing systems interconnected by a network 
communications systems in accordance with the known art. 

55 FIG. IB depicts a functional block diagram of the network 
components comprising the present invention. Each user 
unit within network 100 supporting dynamic file remapping 
in accordance with the present invention, such as user unit 
102 in the depicted example, includes a login client appli- 

60 cation 110 and a file system redirector 112, File system 
redirector 112, which preferably forms part of the file system 
114, may be integrated into the operating system (together 
with the file system) of user unit 102 in accordance with the 
known art. User unit 102 may optionally include a machine- 

65 specific set 116 of file or directory mappings as known in the 
art, such as the mappings which are utilized to permit access 
to a shared disk drive within network 102. 
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Server 106 includes a login server 118 and one or more 
sets 120a-120« of dynamic or user-specific file/directory 
mappings. User-specific sets of file and/or directory map- 
pings 120a-120/j may be of the same type and form as 
conventional machine-specific file mappings 116 known in 
the art, and may be loaded or employed by file redirector 112 
and file system 114 in the same manner. In the present, 
invention, however, the cause for loading and setting the 
additional file mappings and the selection of a particular set 
of file mappings differs from the prior art, as described in 
further detail below. Server 106 also includes a shared, 
single-user application 122. Single user application 122 may 
be any conventional application designed for use by only 
one user at a time, as opposed to multi-user applications 
which allow multiple users to concurrently share the appli- 
cation. Although the exemplary embodiment depicts login 
server 118 and single user application 122 as stored within 
a single server 106, these components may be stored on 
separate servers within the network. In fact, different por- 
tions of single user application 122 may be stored on 
separate servers as described in further detail below. 

The client or user unit 102 may obtain four items from one 
or more server units 106 within a network: (a) the applica- 
tion program; (b) the application data, which may be user- 
specific and need not be colocated on the server unit(s) for 
the application program; (c) user-based file mappings; and 
(d) machine-based file mappings. The user-based file map- 
pings are preferably retrieved from a central logon server 
(more commonly referred to as a "domain controller") or its 
backup logon server. These user-based file mappings may be 
employed to transparently locate the application data for a 
particular user. The machine-based (or "machine-specific") 
file mappings are optional and may be obtained either 
locally or from a server unit, but preferably from a network 
boot server. 

While the exemplary embodiment suggests that the appli- 
cation program, application data, and user-based file map- 
pings are colocated in the same server unit 106, those skilled 
in the art will recognize that, in practice, the application 
program and the user-based (or "user-specific") file map- 
pings would rarely be colocated on the same server unit. 

In the present invention, login client 110 is employed to 
establish a functional connection between user unit 102 and 
network 100, submitting a request to login server 118 
together with a userid and password as is known in the art. 
User-specific file mapping tables 120a-120n are stored at a 
location within server 106 known to the domain controller 
within logon authentication server application 118, When a 
user employs logon client 110 to connect to server 106, the 
client logon code within user unit 102 queries server 106 for 
user-specific mapping information. Server 106 determines 
whether a user-specific mapping table within tables 
120a-120« corresponds to the logon id supplied by the user 
logging on. If so, the appropriate user-specific file mappings 
are returned to user, unit 102 by login server 118. In an 
alternative implementation of the present invention, the 
login client 110 would retrieve the user-specific mapping 
information directly (e.g. using redirected file i/o) from a 
well known, user-specific location on the domain controller 
or backup domain controller. 

User-specific file mappings returned by the logon authen- 
tication server application 118 are established for user unit 
102, appended to the currently active file mapping informa- 
tion in the client-side file system redirector 112 within user 
unit 102. lTiese user-specific file mappings remain in effect 
and are employed by the file system redirector 112 within 
user unit 102 until the user logs off that data processing 
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system. When the user logs off a particular user unit, the 
user-specific file mappings are unloaded without affecting 
other remapping information within user-unit 102, such as 
machine specific file mappings 116 loaded at system initial - 
5 ization to establish a connection to network 100 via a 
network interface card for submitting login requests. 
Another set of file mappings may than be loaded for the next 
user that logs on to network 100 from user unit 102 with a 
different userid. 

3Q An example of a suitable single user application 122 is 
Netscape Navigator version 2 available from Netscape Com- 
munications Corporation of Mountain View, Calif. 
(Netscape Communicator, which is version 4 of the 
Netscape browser application, is a multi-user application). 

35 The present invention may be utilized for sharing a single - 
user Netscape Navigator application among various users in 
a network computer (NC) environment. 

In the prior art, in order to support user-specific 
preferences, bookmarks, and caching, a unique copy of 

20 Netscape Navigator would be required on each user-unit 
employed by only a single user or in each user's home 
directory on the network. With the present invention, a 
single copy of most of the Netscape Navigator application's 
files are stored in a single shared server directory. Some files, 

25 such as the Web page cache, are remapped to a machine 
specific directory while the remaining files, such as the 
bookmarks file (BOOKMARK.HTM), the Netscape con- 
figuration file (NETSCAPE.INI), security files and the 
cookie cache, are dynamically mapped to another location 

30 depending on the identity of the user logged on. This 
protects the user's sensitive security and cookie data and 
user preferences even as if the user "roams" from user unit 
to user unit within the network or if multiple users share the 
same user unit. 

35 As illustrated by the example described above, the 
dynamic file remapping of the present invention allows the 
application files of single-user application 122 to effectively 
be distributed among a plurality of data processing systems, 
or within different directories, depending on the user. A 

40 single copy of common application files 122a, such as the 
executables, may be stored in a single directory and shared 
among a plurality of users. User-specific application files 
122&, such as security-sensitive bookmark and cookie files, 
may be stored in a different location, with different sets of 

45 user-specific application files 122b mapping to the directory 
and file designation for those files within single user appli- 
cation 122, depending upon the identity of the user. Finally, 
non-sensitive user-specific application files 122c, such as 
cached Web pages, may be stored in yet another location, 

50 including within either user unit 102 or server 106. User 
specific files may be mapped to different locations for 
security or reliability purposes as well. For example, the 
netscape bookmark file may be mapped to a read-only 
directory with other read-only configuration files for this 

55 user. These read-only files may be more easily replicated 
from a common location, and the user will be unable to 
accidently corrupt these files through user error. Similarly, 
files such as the Netscape security files such as cookie files 
can be mapped to a read-write location. User specific files 

60 may be transparently mapped to common locations for 
groups of users as well (usually for read only configuration 
files). File or directory mappings for all such application 
files forming part of a conventional, single-user application 
may be dynamically specified based on the userid of the 

65 user. 

Although the dynamic file mapping technique of the 
present invention provides greater benefit in conjunction 
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with single-user applications, value may still be provided 
from use with multi-user applications. For instance, dynamic 
file mapping provides greater ease of use (since user specific 
files can more easily be cloned and these files can even be 
mapped to common locations across a set of similar users of 
the applications. In addition, dynamic file mapping can 
provide significant savings in disk space even for multiuser 
applications since only the minimum set of non-shared files 
need be remapped to user specific areas, and some can be 
shared by classes of users of the application. Accordingly, 
the present invention may also be employed with more 
recent versions of the Netscape browser, and other multi- 
user applications. 

Referring now to FIG. 2, a user-specific mapping table for 
dynamic file mapping in accordance with a preferred 
embodiment of the present invention is illustrated. File 
mapping table 120a includes two columns. The first column 
202 contains the client-side view of source directory or path 
of the files employed by the shared, single -user application. 
At least three types of source paths may be specified: explicit 
directory paths and file names, such as 
Z:\Netscape\Bookmark.htm; directory paths and wildcards, 
such as Z:\Netscape\*.db; and directory names, such as 
Z:\Netscape\Cache . 

The second column 204 of user-specific mapping table 
120a contains the corresponding location of the files speci- 
fied by name or directory path in column 202. The files may 
be located on either a server or the user unit. When the client 
file system requests a file within a mapped directory path 
and/or filename, the requested file is obtained from the 
user-specific location on the server rather than from the drive 
specified. Each user will have a different directory, prefer- 
ably based on the specific userid of that user, such as a 
directory path including the userid. 

For a specific subset of users, a file can be mapped to the 
same location, by specifying the same target location in the 
file mapping table. For example, half of the users in the 
organization could share the same Netscape bookmark file 
from a read-only location on the network, and the other half 
of the users each could have their own read-write copy 
stored in a user specific location. 

With reference now to FIGS. 3A-3B, high level flow- 
charts for processes of establishing and employing dynamic 
file mapping in accordance with a preferred embodiment of 
the present invention are depicted. FIG. 3 A depicts a process 
of establishing dynamic file mapping. The process begins at 
step 302, which depicts a network being formed with at least 
one client data processing system, or user unit, and at least 
one server data processing system, with a login client and 
server for providing functional connection of the user unit to 
the server. 

The process next passes to step 304, which illustrates 
defining a user for the network, including creating a userid 
for the user, creating a user-specific file mapping table at a 
location known to the login server, and user-specific 
directorial, if necessary. The process then passes to step 306, 
which depicts setting the login client on the user unit to 
query for user-specific file mappings during the login rou- 
tine. The process next passes to step 308, which illustrates 
setting the file redi rector to append or otherwise integrate 
user-specific file mappings to existing file mappings in the 
client data processing system network filesystem. The pro- 
cess then passes to step 310, which depicts the process 
becoming idle until the invention is to be implemented in 
another network. 

FIG. 3B depicts a process of setting and employing 
dynamic file mappings in accordance with a preferred 
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embodiment of the present invention. The process begins at 
step 312, which illustrates a user logging into the network at 
the client data processing system utilizing a userid and 
password in accordance with the known art. The process 

5 next passes to step 314, which illustrates the login client 
querying the login server for user- specific file mappings, and 
then to step 316, which depicts a determination by the login 
server of whether a table of user-specific file mappings 
corresponding to the provided userid exists. 

10 Although the exemplary embodiment depicts the attempt 
to dynamically load file mappings as being triggered by a 
user logging in, other triggering events may be employed 
instead. For example, the start of an application employing 
dynamically mapped files may be employed as a triggering 
5 event Furthermore, the userid is only one possible context 
variable utilized to select particular file mappings to be 
loaded. Other context variables may be utilized in addition 
to or in lieu of the userid for selecting a particular set of file 
mappings to be loaded, such as the data processing system 

20 id, an application identifier or type, and the like. The present 
invention applies equally regardless of triggering event or 
context variable utilized to automatically initiate dynamic 
file mapping and to select particular file mapping sets, 
provided that rebooting the client system is not required to 

25 integrate the dynamic file mappings within the filesystem 
redirector and that the dynamic file mappings are loaded and 
unloaded without affecting traditional or machine-based file 
mappings. 

If no table of user-specific file mappings is found, the 

30 process proceeds to step 318, which depicts the process 
becoming idle until another user logs in to the network. If a 
corresponding table is found, however, the process proceeds 
instead to step 320, which illustrates the server returning the 
file mappings to the user unit, which appends them to 

35 existing file mappings within the user unit without disturb- 
ing the existing file mappings. 

The process then passes to step 322, which depicts a 
determination by the file system redirector of whether a 
dynamically mapped file or directory has been accessed. If 

40 not, the process returns to step 322 and continues polling for 
attempts to access a dynamically mapped file or directory. If 
an attempt to access the dynamically mapped files or direc- 
tories is made, the process proceeds instead to step . 324, 
which illustrates redirecting the attempted file system access 

45 to the dynamically mapped location. The portion of the 
process depicted in steps 322 and 324 continues until 
interrupted or killed by an external process. 

FIG. 3C depicts a process of unloading dynamically 
loaded file mappings in accordance with the present inven- 

50 tion. The process begins at step 326, which depicts to 
occurrence of a triggering event such as the user logging out 
of the network. The process then passes to step 328, which 
illustrates a determination of whether any dynamically 
loaded file mappings are presently loaded. Some means for 

55 distinguishing dynamically loaded file mappings from 
traditional, machine-specific file mappings, such as a flag or 
attribute associated with dynamically loaded file mappings, 
is required for this purpose. 

If at least one dynamically loaded file mapping is 

60 identified, the process proceeds to step 330, which depicts 
unloading only the dynamic file mappings, without disturb- 
ing other file mappings, and the process then proceeds to 
step 332. If no dynamic file mappings are loaded, however, 
the process proceeds instead directly to step 332, which 

65 illustrates the process becoming idle until another triggering 
event for unloading dynamic file and directory mappings is 
detected. 
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The present invention adds the capability of user-based 
file re-mappings which may be loaded at any time. The 
mappings are transparently integrated with traditional 
(machine-based) file mappings by the client network file- 
system. This provides the necessary support for allowing a 5 
single-user application to be shared by multiple users while 
providing user-specific file support and protecting the secu- 
rity of such user-specific files. The file mappings established 
by the present invention are dynamic, and may be loaded or 
unloaded and replaced without reinitializing the client data 10 
processing system by logging in and logging out with 
different userids. 

It is important to note that while the present invention has 
been described in the context of a fully functional data 
processing system or network, those skilled in the art will 1S 
appreciate that the mechanism of the present invention is 
capable of being distributed in the form of a computer 
readable medium of instructions in a variety of forms, and 
that the present invention applies equally regardless of the 
particular type of signal bearing media used to actually carry 20 
out the distribution. Examples of computer readable media 
include: nonvolatile, hard -coded type media such as read 
only memories (ROMs) or erasable, electrically program- 
mable read only memories (EEPROMs), recordable type 
media such as floppy disks, hard disk drives and CD-ROMs, 25 
and transmission type media such an digital and analog 
communication links. 

While the invention has been particularly shown and 
described with reference to a preferred embodiment, it will 
be understood by those skilled in the art that various changes 30 
in form and detail may be made therein without departing 
from the spirit and scope of the invention. 

What is claimed is: 

1. A method of dynamic file mapping, comprising: 
storing an application on a first server and a plurality of 

sets of user-specific file mappings on a second server 

within a network; 
responsive to a user logging into the network, determining 

a userid for the user; 40 
determining whether a set of user-specific file mappings is 

associated with the userid; 
responsive to determining that a set of user- specific file 

mappings is associated with the userid, loading the set 

of user-specific file mappings; 45 
responsive to the user executing the application, utilizing 

the user-specific file mappings to redirect file calls from 

the application. 

2. The method of claim 1, wherein the step of storing an 
application on a first server and a plurality of sets of 50 
user-specific file mappings on a second server within a. 
network further comprises: 
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storing a plurality of sets of user-specific file mappings for 
the application on the second server. 

3. The method of claim 1, wherein the step of storing an 
application on a first server and a plurality of sets of 
user-specific file mappings on a second server within a 
network further comprises: 

storing a single-user application on the first server for 
execution by a plurality of users. 

4. The method of claim 1, further comprising: 
loading at least one machine-specific file mapping in 

addition to the set of user-specific file mappings. 

5. The method of claim 1, further comprising: 
responsive to the user logging out of the network, unload- 
ing only the set of user-specific file mappings. 

6. A mechanism for dynamic file mapping, comprising: 
an application server containing an application; 

a domain controller containing a plurality of sets of 

user-specific file mappings; 
a user unit connected to the application server and the 

domain controller to form a network, wherein the 

network further comprises a logon routine: 

determining a userid for a user in response to . the user 
logging into the network; 

determining whether a set of user-specific file map- 
pings is associated with the userid; and 

loading the set of user-specific file mappings in the user 
unit in response to determining that a set of user- 
specific file mappings is associated with the userid, 
wherein the user unit, responsive to the user executing the 

application, utilizes the user-specific file mappings to 

redirect file calls from the application. 

7. The mechanism of claim 6, wherein the sets of user- 
specific file mappings further comprise: 

user-specific file mappings for the application. 

8. The mechanism of claim 6, wherein the application 
further comprises: 

a single-user application accessible for execution by a 
plurality of users. 

9. The mechanism of claim 6, wherein the user unit loads 
at least one machine-specific file mapping in addition to the 
set of user-specific file mappings. 

10. The mechanism of claim 6, wherein the network 
further comprises: 

a logout routine unloading only the set of user-specific file 
mappings from the user unit in response to the user 
logging out of the network. 
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